Types of Cloud Audit

Questions and Answers

PDF Questions PDF Answers

What does a governance and strategy audit evaluate?

Social media presence of the organization

Employee satisfaction within the organization

Framework for defining requirements and developing a strategic plan for the cloud (correct)

Financial statements of the organization

Which type of audit involves logging, monitoring, scanning, and alerting of a system or environment?

Compliance and controls audit

Configuration and activity monitoring (correct)

Access review

Governance and strategy audit

What does an access review involve?

Reviewing historical weather patterns of the organization's location

Reviewing external marketing strategies

Reviewing all user and service accounts and permissions within information system boundaries (correct)

Reviewing employee performance evaluations

Who typically performs compliance and controls audits in organizations?

Designated internal audit team or external audit firm

What triggers IT or cloud audits in organizations?

Scheduled compliance audits

What is the purpose of disabling unused or invalid access during an access review?

To ensure security by removing unnecessary access privileges