EMC Proven Professional – Cloud Architect — Question 8

Your customer's cloud applications are hosted by a CSP. You have been assigned to perform a compliance audit for the CSP's cloud architecture using the CSA framework.
How can the company use the framework?

Answer options

• A. Adopt the CSP's policies for security and their certifications
• B. Use the roles and responsibilities defined by the provider
• C. Determine what the service provider supplies for compliance requirements
• D. Measure the company's requirements for transparency in security policies

Correct answer: D

Explanation

The correct answer is D because measuring the company's requirements for transparency in security policies is essential for understanding compliance needs. Options A, B, and C focus on adopting or identifying what the CSP provides but do not address the company's own requirements for transparency, which is crucial for effective compliance audits.