Which of the following would be MOST useful to an organization planning to adopt a public cloud computing model?
Which of the following would be MOST useful to an organization planning to adopt a public cloud computing model?
When planning to adopt a public cloud computing model, an organization would find an independent control assessment to be most useful. This type of assessment, conducted by a third party, evaluates the cloud service provider's security controls and practices. It provides an objective evaluation of the effectiveness of the security measures, ensuring that they are in place and functioning as intended. This is critical for making informed decisions about the security and risk management aspects of adopting a public cloud computing model.
I believe A is the answer. Service level agreement (SLA) performance metrics
A is correct.
why not A?
While an independent control assessment (option C) could also be valuable for assessing the security and compliance posture of the CSP, SLA performance metrics are more directly relevant to evaluating the quality of service delivery and meeting the organization's operational needs in a public cloud environment.
C. Independent control assessment
When planning to adopt a public cloud computing model, an organization would find an independent control assessment to be MOST useful. This involves a third-party assessment of the cloud service provider's security controls and practices. While each option has its importance, an independent control assessment (Option C) provides the organization with an objective evaluation of the effectiveness of the cloud service provider's security controls. It offers assurance that the provider's security measures are in place and functioning as intended. In the context of security and risk management, having an independent assessment of the cloud service provider's controls is critical for making informed decisions about the adoption of a public cloud computing model.