Certificate of Cloud Auditing Knowledge (CCAK) Free Practice Exam Questions

271 real Certificate of Cloud Auditing Knowledge (CCAK) exam questions with answers and AI explanations. ISACA certification prep — page 1 of 28.

  1. Question 1: When applying the Top Threats Analysis methodology following an incident, what is the scope of the technical impact identification step?
  2. Question 2: From the perspective of a senior cloud security audit practitioner in an organization of a mature security program with cloud adoption, which of the following…
  3. Question 3: Which of the following controls framework should the cloud customer use to assess the overall security risk of a cloud provider?
  4. Question 4: When using a SaaS solution, who is responsible for application security?
  5. Question 5: In all three cloud deployment models, (IaaS, PaaS, and SaaS), who is responsible for the patching of the hypervisor layer?
  6. Question 6: In cloud computing, with whom does the responsibility and accountability for compliance lie?
  7. Question 7: When reviewing a third-party agreement with a cloud service provider, which of the following should be the GREATEST concern regarding customer data privacy?
  8. Question 8: During an audit it was identified that a critical application hosted in an off-premises cloud is not part of the organization’s DRP (Disaster Recovery Plan). M…
  9. Question 9: Which of the following metrics are frequently immature?
  10. Question 10: Since CCM allows cloud customers to build a detailed list of requirements and controls to be implemented by the CSP as part of their overall third-party risk m…