Why Not the Others?
A. A set of software development life cycle requirements for cloud service providers → The CCM does not focus specifically on software development; it covers overall cloud security controls.
B. An inventory of cloud services security controls that are arranged into a hierarchy of security domains → The CCM organizes controls into separate domains, but they are not arranged hierarchically.
D. A set of regulatory requirements for cloud service providers → The CCM is not a regulatory requirement, but it helps organizations align with regulatory standards (e.g., ISO 27001, NIST, GDPR, HIPAA).
The Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) is a framework that maps security controls to various industry standards, best practices, and regulatory frameworks. It provides cloud service providers (CSPs) and customers with a structured inventory of security controls, helping to assess risk and compliance in cloud environments.
Why C is Correct?
The CCM organizes security controls into separate security domains based on cloud-specific risks and compliance requirements.
These domains cover data security, identity management, compliance, operations, and other security areas relevant to cloud computing.
C. An inventory of cloud service security controls that are arranged into separate security domains
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.CCSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
MaciekMT
1 month, 3 weeks agoMaciekMT
1 month, 3 weeks agoakg001
4 months, 3 weeks ago