From the course: Cloud Security Operations by Pearson
Join today to access over 25,200 courses taught by industry experts.
Provider risk assessment programs
From the course: Cloud Security Operations by Pearson
Provider risk assessment programs
On this exam, the primary provider risk assessment program is the Cloud Security Alliance Cloud Controls Matrix, or CCM. You have to be knowledgeable of the CCM on the exam. Now, it includes 197 control objectives organized into 17 domains covering all main aspects of cloud technology. Do you have to have a deep dive knowledge on this exam? By no means. This is not a CSA exam, it's ISC squared. But these controls are widely used for the systematic assessment of cloud provider implementations. The CSA CCM provides guidance on which security controls should be implemented by which actor within the cloud supply chain. The CCM is established as the de facto standard for cloud security assurance and compliance. Integrated into the CCM is the Consensus Assessment Initiative Questionnaire, or CAIQ. We have the Star Level 1. This is a security questionnaire repository, so it offers an industry-accepted way to document what security controls exist in IaaS, PaaS, and software-as-a-services. In…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
(Locked)
Conflicting international legislation8m 27s
-
(Locked)
Ediscovery and forensics3m 56s
-
(Locked)
Issues with PHI and PII in the cloud2m 45s
-
(Locked)
Standard privacy requirements2m 25s
-
(Locked)
Privacy impact assessments (PIAs)2m 38s
-
(Locked)
Risk treatment3m 47s
-
(Locked)
Provider risk assessment programs3m 13s
-
(Locked)
Regulatory transparency requirements3m 11s
-
(Locked)
-
-