Certificate of Cloud Auditing Knowledge (CCAK) — Question 83
From a compliance perspective, which of the following artifacts should an assessor review when evaluating the effectiveness of Infrastructure as Code deployments?
Answer options
- A. SOC reports
- B. Logs
- C. Evaluation summaries
- D. Interviews
Correct answer: B
Explanation
Logs provide essential insights into the actual operations and behaviors of Infrastructure as Code deployments, making them crucial for compliance evaluations. While SOC reports, evaluation summaries, and interviews can offer valuable context, they do not directly reflect the real-time performance and compliance of the deployments like logs do.