(ISC)2(ISC)2
CISSP · Question #1505
CISSP Question #1505: Real Exam Question with Answer & Explanation
Sign in or unlock CISSP to reveal the answer and full explanation for question #1505. The question stem and answer options stay visible for context.
Submitted by olafpl· Mar 5, 2026Security Assessment and Testing
Question
An application is used for funds transfer between an organization and a third-party. During a security audit, an issue with the business continuity/disaster recovery policy and procedures for this application. Which of the following reports should the audit file with the organization?
Options
- AService Organization Control (SOC) 1
- BStatement on Auditing Standards (SAS) 70
- CService Organization Control (SOC) 2
- DStatement on Auditing Standards (SAS) 70-1
Unlock CISSP to see the answer
You've previewed enough free CISSP questions. Unlock CISSP for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#SOC reports#third-party risk#audit reports#BC/DR