Certificate of Cloud Security Knowledge (CCSK) — Question 112

In the Software-as-a-service relationship, who is responsible for the majority of the security?

Answer options

• A. Application Consumer
• B. Database Manager
• C. Application Developer
• D. Cloud Provider
• E. Web Application CISO

Correct answer: D

Explanation

The Cloud Provider is primarily responsible for the security of the infrastructure and services they offer in a SaaS relationship, which includes maintaining the security of the application and data. Other roles like the Application Consumer or Application Developer have responsibilities, but they do not cover the overall security management as comprehensively as the Cloud Provider does.