Pg. 56 - The Security Guidance for Critical Areas of Focus in Cloud Computing v4.0 - Cloud customers, particularly in public cloud, must rely more on third-party attestations of the provider to understand their compliance alignment and gaps.
P 55 4.1.1.1 How Cloud Changes Compliance
As with security, compliance in the cloud is a shared responsibility model. Both the cloud provider
and customer have responsibilities, but the customer is always ultimately responsible for their own
compliance. These responsibilities are defined through contracts, audits/assessments, and specifics
of the compliance requirements.
P 56 Cloud customers, particularly in public cloud, must rely more on third-party attestations of the
provider to understand their compliance alignment and gaps.
Beside C is correct, the Answer A is also correct. See page 58 of Security Guidance about Artifacts. Answer A is about the Provider provided documentation which is also needed to understand the gaps.
Security Guidance, page 55: As with security, compliance in the cloud is a shared responsibility model. Both the cloud provider and customer have responsibilities, but the customer is always ultimately responsible for their own compliance. These responsibilities are defined through contracts, audits/assessments, and specifics of the compliance requirements.
3rd Party Attestation would give unbiased view of compliance status.
upvoted 4 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
ciscolangirl
Highly Voted 8 months, 2 weeks agoassfedassfinished
Most Recent 2 months agoBigG83
4 months agoCrotofroto
8 months, 4 weeks agojuanescast
9 months, 3 weeks agomoten
1 year ago