Certified Cloud Security Professional (CCSP) — Question 44
The SOC Type 2 reports are divided into five principles.
Which of the five principles must also be included when auditing any of the other four principles?
Answer options
- A. Confidentiality
- B. Privacy
- C. Security
- D. Availability
Correct answer: C
Explanation
Security is the foundational principle that underpins the other four principles in SOC Type 2 reports. Without proper security measures in place, confidentiality, privacy, and availability cannot be effectively ensured. Therefore, while all principles are important, security is the one that must be consistently addressed across the board.