Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

TPCRA: Lesson 6: Cloud Due Diligence > Cloud Due Diligence Overview > Flashcards

Cloud Due Diligence Overview Flashcards

1
Q

Cloud Due Diligence

A

-Cloud security for third parties is often the most important for executive leadership to understand for cyber professionals to review.

-You are trusting your data and processes to run outside your systems and environment.

-Reviewing cloud security controls can include a bit more than what is provided to you on an information security questionnaire (as your organization has a role to play within a shared responsibility model).

-Therefore, it is important to specially discuss cloud due diligence.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Cloud Due Diligence Overview

A

-Define Cloud
-Shared Responsibility Model
-Security Reporting
-Patterns
-Cloud Software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Cloud

A

Definition
-Your data stored by a third party and accessible over the internet.
-Anything that is no in your data center, not in your network. Could be in a Co-Lo facility CSP

CSP - Cloud Service Provider

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Types of Cloud

A

-Concentration Risk
-Shared Responsibility Model

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Types of Cloud:
-Concentration Risk

A

-Large number of SaaS products running in the US east

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Types of Cloud:
-Shared Responsibility Model

A

-Cloud service provider is essentially a 4th party

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

TPCRA: Lesson 6: Cloud Due Diligence (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions