CompTIA Cloud Essentials+ (CLO-002) — Question 27

After a cloud migration, a company hires a third party to conduct an assessment to detect any cloud infrastructure vulnerabilities. Which of the following BEST describes this process?

Answer options

• A. Hardening
• B. Risk assessment
• C. Penetration testing
• D. Application scanning

Correct answer: B

Explanation

The correct answer is B, as a risk assessment involves identifying and evaluating vulnerabilities and threats to the infrastructure. Hardening refers to strengthening security measures, penetration testing simulates attacks to discover vulnerabilities, and application scanning focuses on finding issues within applications rather than the overall infrastructure.