Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. ISACA
  5. CCAK

ISACA CCAK Exam
Certificate of Cloud Auditing Knowledge (Page 7 )

Updated On: 1-Feb-2026
Page 7 of 63
PDF with 334 Questions

Which of the following BEST ensures adequate restriction on the number of people who can access the pipeline production environment?

  1. Ensuring segregation of duties in the production and development pipelines.
  2. Role-based access controls in the production and development pipelines.
  3. Separation of production and development pipelines.
  4. Periodic review of the Cl/CD pipeline audit logs to identify any access violations.

Answer(s): C


Reference:

https://www.isaca.org/-/media/files/isacadp/project/isaca/articles/journal/2016/volume- 2/journalvolume-2-2016



The Cloud Octagon Model was developed to support organizations:

  1. risk assessment methodology.
  2. risk treatment methodology.
  3. incident response methodology.
  4. incident detection methodology.

Answer(s): A



Which of the following is a cloud-native solution designed to counter threats that do not exist within the enterprise?

  1. Policy based access control
  2. Attribute based access control
  3. Rule based access control
  4. Role based access control

Answer(s): C



Which of the following contract terms is necessary to meet a company’s requirement that needs to move data from one CSP to another?

  1. Drag and Drop
  2. Lift and shift
  3. Flexibility to move
  4. Transition and data portability

Answer(s): D


Reference:

https://www.isaca.org/resources/isaca-journal/past-issues/2014/data-owners-responsibilities-whenmigrating-to-the-cloud



Supply chain agreements between CSP and cloud customers should, at minimum, include:

  1. Organization chart of the CSP
  2. Policies and procedures of the cloud customer
  3. Audits, assessments and independent verification of compliance certifications with agreement terms
  4. Regulatory guidelines impacting the cloud customer

Answer(s): C


Reference:

https://searchitchannel.techtarget.com/definition/cloud-service-provider-cloud-provider



Viewing page 7 of 63
Viewing questions 31 - 35 out of 334 questions



Post your Comments and Discuss ISACA CCAK exam prep with other Community members:

Join the CCAK Discussion