EMT Practice Test
1. Question Content...
Question8: During the planning phase of a cloud audit, the PRIMARY goal of a cloud auditor is to:
Question10: In audit parlance, what is meant by "management representation"?
Question14: Which of the following is an example of reputational business impact?
Question17: What does "The Egregious 11" refer to?
Question19: Organizations maintain mappings between the different control frameworks they adopt to:
Question20: Which of the following is an example of integrity technical impact?
Question23: Which of the following is a good candidate for continuous auditing?
Question27: The MOST important goal of regression testing is to ensure:
Question35: Who should define what constitutes a policy violation?
Question38: Which of the following metrics are frequently immature?
Question42: Which of the following activities is performed outside information security monitoring?
Question43: Which objective is MOST appropriate to measure the effectiveness of password policy?
Question44: What do cloud service providers offer to encourage clients to extend the cloud platform?
Question47: What legal documents should be provided to the auditors in relation to risk management?
Question54: What areas should be reviewed when auditing a public cloud?
Question59: Cloud Controls Matrix (CCM) controls can be used by cloud customers to:
Question60: Which of the following is an example of availability technical impact?
Question65: A dot release of the Cloud Controls Matrix (CCM) indicates:
Question66: When mapping controls to architectural implementations, requirements define:
Question67: In cloud computing, which KEY subject area relies on measurement results and metrics?
Question74: Which of the following is a category of trust in cloud computing?
Question78: The MOST important factor to consider when implementing cloud-related controls is the:
Question81: What is below the waterline in the context of cloud operationalization?