Topic 1: Section 3.1.1.4 of Security Guidance for Critical Areas of Focus in Cloud Computing provides several examples of information privacy and security laws, as well as legal frameworks from across the world. Select one of these areas, laws, or frameworks and discuss how it would impact a US-based company storing data with a cloud service provider or doing business with an organization or individual covered under that area, law, or framework.
Topic 2: Review Domain 4 of Security Guidance for Critical Areas of Focus in Cloud Computing. Your organization is transitioning workload from an on-prem data center to a PaaS cloud service offering. Discuss one specific way in which your audit activities must change to address the new hosting structure. What types of impacts could this change have?
—
Section 3.1.1.4 of Security Guidance for Critical Areas of Focus in Cloud Computing gives various instances of information privacy and security regulations, as well as legal frameworks from around the world, in Topic 1. Choose one of these domains, regulations, or frameworks and analyze how it would affect a US-based company that stores data with a cloud service provider or does business with an organization or individual covered by that area, legislation, or framework.
Domain 4 of Security Guidance for Critical Areas of Focus in Cloud Computing is reviewed in Topic 2. Your company is migrating workload from an on-premises data center to a PaaS cloud service provider. Discuss one specific way your auditing efforts must alter to accommodate the new hosting arrangement. What kinds of effects are there?