Certificate of Cloud Auditing Knowledge (CCAK) — Question 139

Controls implemented as part of a cloud compliance plan need to be adapted depending on changes in the:

Answer options

• A. key control indicators (KCIs).
• B. threat landscape.
• C. risk scoring criteria.
• D. risk owner expertise.

Correct answer: B

Explanation

The correct answer is B, as the threat landscape is constantly evolving with new vulnerabilities and attack vectors, requiring compliance controls to be updated accordingly. Options A, C, and D are important aspects of compliance but do not directly relate to the need for immediate adaptation of controls based on external security changes.