exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam

Exam CISA topic 1 question 609 discussion

Actual exam question from Isaca's CISA
Question #: 609
Topic #: 1
[All CISA Questions]

Which of the following would be MOST useful to an organization planning to adopt a public cloud computing model?

  • A. Service level agreement (SLA) performance metrics
  • B. Management attestation report
  • C. Independent control assessment
  • D. Audit report prepared by the service provider
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Staanlee
Highly Voted 2 years, 2 months ago
I believe A is the answer. Service level agreement (SLA) performance metrics
upvoted 5 times
...
pLulu
Most Recent 3 months, 3 weeks ago
c. While Service Level Agreement (SLA) performance metrics (Option A) are important for understanding the expected performance and reliability of the cloud services, they do not provide a comprehensive view of the security and control measures in place. An Independent control assessment (Option C) is more useful because it offers an unbiased evaluation of the cloud provider's controls, helping the organization ensure that the provider meets their security and compliance requirements.
upvoted 1 times
...
Swallows
9 months, 4 weeks ago
Selected Answer: A
While an independent control assessment (option C) could also be valuable for assessing the security and compliance posture of the CSP, SLA performance metrics are more directly relevant to evaluating the quality of service delivery and meeting the organization's operational needs in a public cloud environment.
upvoted 2 times
...
Yejide03
1 year ago
Selected Answer: C
C. Independent control assessment
upvoted 1 times
...
3008
1 year, 3 months ago
Selected Answer: A
A is correct.
upvoted 3 times
...
FAGFUR
1 year, 3 months ago
Selected Answer: C
When planning to adopt a public cloud computing model, an organization would find an independent control assessment to be MOST useful. This involves a third-party assessment of the cloud service provider's security controls and practices. While each option has its importance, an independent control assessment (Option C) provides the organization with an objective evaluation of the effectiveness of the cloud service provider's security controls. It offers assurance that the provider's security measures are in place and functioning as intended. In the context of security and risk management, having an independent assessment of the cloud service provider's controls is critical for making informed decisions about the adoption of a public cloud computing model.
upvoted 1 times
...
starzuu
1 year, 7 months ago
why not A?
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago