From malware.news
In the last decade, popularity of cloud computing has increased multi-folds. The ubiquitous, on-demand, and convenient way to spin up resources in the cloud has contributed to its fast adoptions.
Why cloud audit?
An organization, irrespective of its cloud deployment model, may perform a cloud audit to evaluate its resources on the cloud for performance, security controls and, enforcement of privacy policies, etc
This article focuses on the information security aspect of cloud audits. A cloud security auditor may access the security controls to establish to what extent they have been implemented correctly, their effectiveness, and to identify gaps in the security controls. A cloud audit may also include verification of compliance with the regulatory and governance policies.