Certificate of Cloud Auditing Knowledge (CCAK) — Question 237

The CSA STAR Certification is based on criteria outlined the Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) in addition to:

Answer options

• A. GB/T 22080-2008.
• B. GDPR CoC certification.
• C. ISO/IEC 27001 implementation.
• D. SOC 2 Type 1 or 2 reports.

Correct answer: C

Explanation

The correct answer is C, as the CSA STAR Certification indeed incorporates the ISO/IEC 27001 implementation as a standard for information security management. Options A, B, and D do not directly relate to the specific requirements outlined for CSA STAR Certification, making them incorrect choices.