ISC2 Certified Cloud Security Professional (CCSP) Practice Question
An enterprise is moving workloads containing regulated data to a public IaaS. Senior management wants an independent party, distinct from both the enterprise and the provider, to periodically evaluate the service for compliance with security controls and SLAs. Within the NIST Cloud Computing Reference Architecture, which cloud actor should take on this responsibility?
The NIST Cloud Computing Reference Architecture defines five primary actors. The Cloud Auditor is an independent entity that conducts objective assessments of a cloud service provider's operations, security controls, and performance for the benefit of both the cloud service consumer and other stakeholders. This aligns exactly with management's requirement for an impartial party to verify regulatory compliance and SLA adherence.
The Cloud Service Provider operates and manages the cloud environment; it cannot audit itself impartially.
The Cloud Service Broker intermediates service selection and aggregation but does not perform independent compliance assessments.
The Cloud Service Consumer (customer) uses the service and may request audits but is not the defined independent assessor. Therefore, selecting the Cloud Auditor best satisfies the stated requirement.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the role of the Cloud Auditor within the NIST Cloud Computing Reference Architecture?
Open an interactive chat with Bash
How does the Cloud Auditor differ from the Cloud Service Broker?
Open an interactive chat with Bash
Can the Cloud Service Consumer request audits directly, and how is this different from the Auditor's role?
Open an interactive chat with Bash
ISC2 Certified Cloud Security Professional (CCSP)
Cloud Concepts, Architecture and Design
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .