Free Access to ISACA.CCAK.v2022-12-25.q72 with Valid Practice Test (Page 4)

Question 11

Which of the following defines the criteria designed by the American Institute of Certified Public Accountants (AICPA) to specify trusted services?

A.Security, applicability, availability, privacy and processing integrity
B.Security, confidentiality, availability, privacy and trustworthiness
C.Security, confidentiality, availability, privacy and processing integrity
D.Security, data integrity, availability, privacy and processing integrity

Question 12

When deploying Security as a Service in a highly regulated industry or environment, what should bothparties agree on in advance and include in the SLA?

A.The type of security software which meets regulations and the number of licenses that will be needed.
B.The cost per incident for security breaches of regulated information.
C.The duration of time that a security violation can occur before the client begins assessing regulatory fines.
D.The metrics defining the service level required to achieve regulatory objectives.
E.The regulations that are pertinent to the contract and how to circumvent them.

Question 13

An organization has an ISMS implemented, following ISO 27001 and Annex A controls. The CIO would like to migrate some of the infrastructure to the cloud. Which of the following standards would BEST assist in identifying controls to consider for this migration?

A.ISO/IEC 27701
B.ISO/IEC 22301
C.ISO/IEC 27002
D.ISO/IEC 27017

Question 14

Which of the following parties should have accountability for cloud compliance requirements?

A.Equally shared between customer and provider
B.Customer
C.Provider
D.Either customer or provider, depending on requirements

Question 15

Which of the following is the BEST control framework for a European manufacturing corporation that is migrating to the cloud?

A.PCI-DSS
B.EU GDPR
C.CSA's GDPR CoC
D.NIST SP 800-53

Question 11

Question 12

Question 13

Question 14

Question 15

Download PDF File