ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CCAK All Questions

View all questions & answers for the CCAK exam
Go to Exam

Exam CCAK topic 1 question 237 discussion

Actual exam question from Isaca's CCAK
Question #: 237
Topic #: 1
[All CCAK Questions]

From an auditor perspective, which of the following BEST describes shadow IT?

  • A. An opportunity to diversify the cloud control approach
  • B. A weakness in the cloud compliance posture
  • C. A strength of disaster recovery (DR) planning
  • D. A risk that jeopardizes business continuity planning
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Auditor2020 at March 28, 2025, 4:24 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Auditor2020
5 days, 22 hours ago
Selected Answer: B
B. A weakness in the cloud compliance posture From an auditor's perspective, shadow IT represents a weakness in the cloud compliance posture. Shadow IT refers to the use of IT systems, software, and services without explicit organizational approval, often bypassing established security and compliance controls. This unauthorized use can lead to security vulnerabilities, data breaches, and non-compliance with regulatory requirements, as these unsanctioned systems might not adhere to the organization's security policies and standards. Therefore, shadow IT is viewed as a compliance risk that needs to be addressed to ensure proper governance and security.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago