Palo Alto Networks

ISACA CCAK Exam Questions
Certificate of Cloud Auditing Knowledge (Page 8 )

Updated On: 17-Feb-2026

Viewing Page 8 of 63 pages.

Download PDF version with 334 Questions

QUESTION: 31 Exam Topic: Section 1

Within an organization, which of the following functions should be responsible for defining the cloud adoption approach?

Audit committee
Compliance manager
IT manager
Senior management

Answer(s): D

Reference:

https://www.coso.org/documents/cloud-computing-thought-paper.pdf

Show Answer Next Question

QUESTION: 32 Exam Topic: Section 1

An independent contractor is assessing security maturity of a SaaS company against industry standards. The SaaS company has developed and hosted all their products using the cloud services provided by a third-party cloud service provider (CSP). What is the optimal and most efficient mechanism to assess the controls CSP is responsible for?

Review third-party audit reports.
Review CSP?s published questionnaires.
Directly audit the CSP.
Send supplier questionnaire to the CSP.

Answer(s): B

Reference:

https://www.sapidata.sm/img/cms/CAIQ_v3-1_2020-01-13.pdf

Show Answer Next Question

QUESTION: 33 Exam Topic: Section 1

What areas should be reviewed when auditing a public cloud?

Patching, source code reviews, hypervisor, access controls
Identity and access management, data protection
Patching, configuration, hypervisor, backups
Vulnerability management, cyber security reviews, patching

Answer(s): B

Show Answer Next Question

QUESTION: 34 Exam Topic: Section 1

Which of the following key stakeholders should be identified the earliest when an organization is designing a cloud compliance program?

Cloud process owners
Internal control function
Legal functions
Cloud strategy owners

Answer(s): A

Show Answer Next Question

QUESTION: 35 Exam Topic: Section 1

Which of the following CSP activities requires a client’s approval?

Delete the guest account or test accounts
Delete the master account or subscription owner accounts
Delete the guest account or destroy test data
Delete the test accounts or destroy test data

Answer(s): D

Show Answer Next Question

Viewing page 8 of 63
Viewing questions 36 - 40 out of 334 questions

Post your Comments and Discuss ISACA CCAK exam dumps with other Community members:

Comments:

Name:

Join the CCAK Discussion

Anonymous Commented on June 01, 2025
Question 7 is A. Integrity breach page. 237 of CCAK study guide
UNITED STATES

anonymous Commented on June 01, 2025
question 8 is B avoid duplication of work when assessing compliance. check page 142 of CCAK study guide
UNITED STATES

anonymous Commented on June 01, 2025
answer in 20 is A check page 346 in CCAK study guide
UNITED STATES

anonymous Commented on June 01, 2025
question 15 answer should be B. CIA
UNITED STATES

anonymous Commented on June 01, 2025
answer on number 17 should be D. SaaS. check page 163 of CCAK study guide
UNITED STATES

chuchay Commented on May 27, 2025
very useful and helpful!
UNITED STATES

chuchay Commented on May 26, 2025
CCAK IS HARD
UNITED STATES

ccak Commented on June 08, 2023
ccak is hard
Anonymous