Question 9
UnclassifiedHow does a Threat Analysis Methodology utilizing CCM aid in cloud security?
Correct answer: A
Explanation
A Threat Analysis Methodology using CCM helps by giving a structured way to assess cloud risks and map them to security controls. It supports identifying and mitigating threats because CCM is designed to organize cloud security requirements into a systematic framework for protection.
Why each option is right or wrong
A. It provides a systematic approach to identify and mitigate potential cloud security threats.
The Cloud Controls Matrix (CCM) is a control framework published by the Cloud Security Alliance, organized into 17 security domains and 197 control objectives, so a threat analysis method built around it gives a repeatable way to assess where cloud risks arise and which controls address them. In practice, that structured mapping lets analysts identify gaps, prioritize threats, and apply mitigations against the relevant cloud control areas rather than relying on ad hoc review.
B. It evaluates the creativity of cloud threat warnings.
C. It assesses the impact of cloud threats on social media trends.
C. It measures the cloud provider's ability to create engaging threat reports.