6.5 ~20 min

Conduct or facilitate security audits

Overview

Audits validate compliance and effectiveness. Know the internal/external/third-party distinction (e.g., SOC 1/2/3 reports) across deployment locations.

Key topics to master

Internal
External
Third-party (SOC reports)
Location: on-prem / cloud / hybrid

Read moreOpen the study library Knowledge checkPractice Domain 6 questions

Previous · 6.4Analyze test output and generate report Next · 7.1Understand and comply with investigations