Certificate of Cloud Auditing Knowledge (CCAK) — Question 32

Which of the following is a corrective control that may be identified in a SaaS service provider?

Answer options

• A. Log monitoring
• B. Penetration testing
• C. Incident response plans
• D. Vulnerability scan

Correct answer: C

Explanation

Incident response plans are designed to address and correct issues after they occur, making them a corrective control. Log monitoring, penetration testing, and vulnerability scans are preventive or detective measures rather than corrective actions.