New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CGEIT Exam - Topic 3 Question 69 Discussion

Actual exam question for Isaca's CGEIT exam
Question #: 69
Topic #: 3
[All CGEIT Questions]

When selecting a cloud provider, which of the following provides the MOST comprehensive information regarding the current status and effectiveness of the provider's controls?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Karl at Mar 05, 2024, 03:00 PM

Limited Time Offer

25%

Off

Get Premium CGEIT Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Marylin
3 months ago
I thought third-party audits were the gold standard for this!
upvoted 0 times
...
Ligia
3 months ago
Wait, can we really trust self-assessments? Seems sketchy.
upvoted 0 times
...
Stevie
3 months ago
Maturity assessments? Not sure they give the full picture.
upvoted 0 times
...
Emilio
4 months ago
I think globally recognized certifications are pretty solid too.
upvoted 0 times
...
Celeste
4 months ago
Third-party audit reports are usually the most reliable!
upvoted 0 times
...
Alishia
4 months ago
Maturity assessments seem like they could help, but I don't recall them being as thorough as an audit report in our practice questions.
upvoted 0 times
...
Fletcher
4 months ago
I feel like control self-assessments could be useful, but they might not be as reliable as third-party audits since they can be biased.
upvoted 0 times
...
Pansy
4 months ago
I think globally recognized certifications are important, but they might not give the full picture of current effectiveness like an audit report would.
upvoted 0 times
...
Tamar
5 months ago
I remember we discussed how third-party audit reports can provide a detailed view of a provider's controls, but I'm not entirely sure if they are the most comprehensive.
upvoted 0 times
...
Teresita
5 months ago
I think the third-party audit report is the most comprehensive option here. That should give the best overview of the provider's controls.
upvoted 0 times
...
Lezlie
5 months ago
Hmm, I'm not totally sure about this. I'll have to review my notes on cloud provider assessments.
upvoted 0 times
...
Fredric
5 months ago
This looks like a tricky one. I'll need to think carefully about the differences between the options.
upvoted 0 times
...
Valentine
5 months ago
A globally recognized certification could be a good indicator, but I'm not sure if it provides the same level of detail as a full audit report.
upvoted 0 times
...
Elinore
5 months ago
Okay, I think I've got this. The solution of adding the GitHub app connector doesn't seem to directly address the goal of monitoring OAuth authentication requests. I'll need to explore other options within Microsoft Defender for Cloud Apps to see if there's a better way to meet the requirement.
upvoted 0 times
...
Natalya
5 months ago
Hmm, I'm not sure about this one. Selecting Analytics & reports in the Teams admin center seems like a logical step, but I'm not confident it will actually identify the network packet loss during the pilot calls.
upvoted 0 times
...
Hortencia
5 months ago
Hmm, this question seems a bit tricky. I'll need to carefully read through each statement and think about which ones are true regarding ownership of shared entities.
upvoted 0 times
...
Major
5 months ago
I feel pretty confident that the answer is B - using a call policy rule in the Expressway-E. That seems like the most direct way to block a specific destination from external callers. The other options don't seem as relevant to this particular scenario.
upvoted 0 times
...
Marjory
5 months ago
I feel like this question is similar to one we did in class where restrictions were deemed unfair. I think it’s false, but I’m not completely confident.
upvoted 0 times
...
Erinn
2 years ago
Yes, that's a good point. It's important for the provider to regularly assess their own controls as well.
upvoted 0 times
...
Charlene
2 years ago
I think a control self-assessment could also provide valuable insights into the provider's controls.
upvoted 0 times
...
Erinn
2 years ago
That's true, but a certification may not always involve a detailed audit like a third-party report.
upvoted 0 times
...
Felicidad
2 years ago
But wouldn't a globally recognized certification also show that the provider meets certain standards?
upvoted 0 times
...
Daryl
2 years ago
I agree with Erinn, a third-party audit report gives an independent verification of the provider's controls.
upvoted 0 times
...
Erinn
2 years ago
I think the most comprehensive information would be provided by a third-party audit report.
upvoted 0 times
...

Save Cancel