Certificate of Cloud Auditing Knowledge (CCAK) Free Practice Exam Questions

271 real Certificate of Cloud Auditing Knowledge (CCAK) exam questions with answers and AI explanations. ISACA certification prep — page 2 of 28.

  1. Question 11: What is the advantage of using dynamic application security testing (DAST) over static application security testing (SAST) methodology?
  2. Question 12: Which of the following should be the FIRST step to establish a cloud assurance program during a cloud migration?
  3. Question 13: How should controls be designed by an organization?
  4. Question 14: Your company is purchasing an application from a vendor. They do not allow you to perform an on-site audit on their information system. However, they say, they…
  5. Question 15: While performing the audit, the auditor found that an object storage bucket containing PII could be accessed by anyone on the Internet. Given this discovery, w…
  6. Question 16: Which of the following is an example of integrity technical impact?
  7. Question 17: The criteria for limiting services allowing non-critical services or services requiring high availability and resilience to be moved to the cloud is an importa…
  8. Question 18: Which of the following approaches encompasses social engineering of staff, bypassing of physical access controls and penetration testing?
  9. Question 19: An independent contractor is assessing security maturity of a SaaS company against industry standards. The SaaS company has developed and hosted all their prod…
  10. Question 20: Which of the following CSP activities requires a client’s approval?