Certificate of Cloud Auditing Knowledge (CCAK) — Question 50
Network environments and virtual instances shall be designed and configured to restrict and monitor traffic between trusted and untrusted connections. These configurations shall be reviewed at least annually, and supported by a documented justification for use for all allowed services, protocols, ports, and by compensating controls. Which of the following controls BEST matches this control description?
Answer options
- A. Network Security
- B. Change Detection
- C. Virtual Instance and OS Hardening
- D. Network Vulnerability Management
Correct answer: A
Explanation
The correct answer is A, Network Security, as it directly addresses the need to manage and monitor traffic between trusted and untrusted connections. Options B, C, and D do not focus specifically on traffic control and monitoring, making them less suitable for this particular requirement.