exam questions

Exam CCSK All Questions

View all questions & answers for the CCSK exam

Exam CCSK topic 1 question 84 discussion

Actual exam question from CSA's CCSK
Question #: 84
Topic #: 1
[All CCSK Questions]

For third-party audits or attestations, what is critical for providers to publish and customers to evaluate?

  • A. Scope of the assessment and the exact included features and services for the assessment
  • B. Provider infrastructure information including maintenance windows and contracts
  • C. Network or architecture diagrams including all end point security devices in use
  • D. Service-level agreements between all parties
  • E. Full API access to all required services
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
beazzlebub
Highly Voted 1 year, 2 months ago
Selected Answer: A
From Security Guidance v4. Section 3.1.2.5: It is critical for a provider to publish, and a customer to evaluate, the scope of the assessment, and which features and services are included in the assessment.
upvoted 17 times
...
negevon
Most Recent 4 months, 2 weeks ago
Selected Answer: A
its clearly A
upvoted 2 times
...
Brainiac
6 months, 4 weeks ago
For third-party audits or attestations, it is critical for providers to publish and customers to evaluate: A. Scope of the assessment and the exact included features and services for the assessment. When it comes to third-party audits or attestations, the scope of the assessment is of utmost importance. Providers should clearly publish the scope of the assessment, specifying the exact features, services, and components included in the assessment. This helps customers understand which aspects of the provider's offering have been evaluated for security, compliance, or other relevant factors. By evaluating the scope, customers can assess if the assessed components align with their specific requirements, regulatory obligations, or industry standards. It provides transparency and allows customers to make informed decisions regarding the security and compliance of the provider's offerings.
upvoted 1 times
...
SKUNK1
10 months, 2 weeks ago
Agree with beazzlebub too
upvoted 1 times
...
A_Nevermind
1 year ago
Selected Answer: A
It is A
upvoted 2 times
...
cjkuga
1 year, 1 month ago
Selected Answer: A
Agree with beazzlebub's answer
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago