isaca · CCAK · Q427 · multiple_choice · topic_1

Prioritizing assurance activities for an organization’s cloud services portfolio depends PRIMARILY on an organization’s…

Prioritizing assurance activities for an organization’s cloud services portfolio depends PRIMARILY on an organization’s ability to:

A.schedule frequent reviews with high-risk cloud service providers.
B.develop plans using a standardized risk-based approach.
C.maintain a comprehensive cloud service inventory.
D.collate views from various business functions using cloud services.

Explanation

Selected Answer: B Design the risk assessment program for cloud migration—all deployment models (private vs. public), service models (IaaS/PaaS/SaaS) and data classification models affect the risk management process. Organizations should list the cloud risks they foresee, and then examine the designated cloud service against those risks to determine risk likelihood, impact and tolerance. CCAK P# 36

Reference: examtopics_top_comment

Practice with progress tracking

Start tracked practice Pricing