29 Nov Practice Test Question-Cloud Security Controls
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Which one of the following frameworks provides a mapping of cloud-specific security controls to security standards, best practices, and regulations?
A. CCM
B. CSF
C. ISO 27001
D. ISO 3100
Correct Answer: A
The Cloud Security Alliance’s (CSA) Cloud Controls Matrix (CCM) provides a mapping of cloud-specific security controls to security standards, best practices, and regulations. So, this is the correct answer. The NIST Cybersecurity Framework (CSF) and ISO 27001 are broad security frameworks that are not cloud-specific. So, these aren’t the correct answer. ISO 31000 is a risk management framework. So, this is also incorrect.
Interested in more practice test questions?
Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test!
No Comments