Question

In: Computer Science

Describe in 500 words discuss the scope of a cloud computing audit for your business. Note-Check...

Describe in 500 words discuss the scope of a cloud computing audit for your business.

Note-Check in chegg writing before you submit it should be 100% unique and don't submit the existing chegg answers,and submit in text format Provide References

Solutions

Expert Solution

The meaning of cloud computing is best characterized by the National Institute of Standard and Technology (NIST). NIST is a part of the U.S. Branch of Commerce with the mission of empowering development through science, innovation, and principles, including distributed computing. As per NIST, "Distributed computing is a model for empowering universal, helpful, on-request network admittance to a common pool of configurable figuring assets (e.g., networks, workers, stockpiling, applications, and administrations) that can be quickly provisioned and delivered with insignificant administration exertion or specialist organization connection. This cloud model is made out of five basic qualities, three help models, and four organization models." This definition was made to set a pattern for the conversation around distributed computing. As characterized in the definition,cloud computing incorporates five fundamental qualities (on-request self-administration, expansive organization access, asset pooling, quick flexibility, and estimated administration), three help models (programming as-a-administration, stage as-a-administration, and foundation as-a-administration), lastly four sending models (private cloud, network cloud, public cloud, and half and half cloud). The various qualities, administration models, and arrangement models can be molded and transformed into various assets relying upon the necessities of the association.

What is a Cloud Computing Audit?

In general, an audit is when a third-party, independent group is engaged to obtain evidence through inquiry, physical inspection, observation, confirmation, analytics procedures, and/or re-performance.

In a cloud computing audit, a variation of these steps is completed in order to form an opinion over the design and operational effectiveness of controls identified in the following areas:

  • Communication
  • Security incidents
  • Network security
  • System development or change management
  • Risk management
  • Data management
  • Vulnerability and remediation management
  • Tone at the top or leaderships commitment to transparency and ethical behavior

The scope of a cloud computing audit will include the procedures specific to the subject of the audit. Additionally, it will include the IT general controls related to organization and administrative, communication, risk assessment, monitoring activities, logical and physical access, systems operations, and change management. An auditor is free to review and require evidence for any of the controls identified within these areas to gain the required assurance that controls are designed and operate effectively. It is also important to note that the controls that are maintained by a vendor are not included in the scope of a cloud computing audit. The role of an auditor is to provide an objective opinion based on facts and evidence that a company has controls in place to meet a certain objective, criteria, or requirement. Additionally, in many cases, the auditor will also provide an opinion on whether or not those controls operated over a period of time. Auditing the cloud for compliance is no different. In instances where the audit requires cloud compliance to satisfy the criteria, the auditor will ask for evidence that controls are enabled (i.e. security groups, encryption, etc), This will allow the cloud auditor to provide an opinion of whether controls were in place and as applicable if they operated over a period of time.


Related Solutions

In your own words, discuss the cloud operating system in detail. Also, research Cloud Computing and...
In your own words, discuss the cloud operating system in detail. Also, research Cloud Computing and explore five major challenges and five major advantages of Cloud Computing.
Q2: Discuss the four types of Cloud Computing and five benefits of Cloud Computing. Discuss with...
Q2: Discuss the four types of Cloud Computing and five benefits of Cloud Computing. Discuss with examples. Thanks a lot!
•Describe abstract nature of cloud computing. •Describe evolutionary factors of computing that led to the cloud....
•Describe abstract nature of cloud computing. •Describe evolutionary factors of computing that led to the cloud. •Describe virtualization at both the desktop and the server level. •Describe and identify common cloud types, which include software as a service, platform as a service, and infrastructure as a service. •Describe the benefits and disadvantages of cloud computing.
In 500 words or more, consider this statement: For cloud computing to become multi-jurisdictional, it must...
In 500 words or more, consider this statement: For cloud computing to become multi-jurisdictional, it must be separated from politics Please don't rewrite already existing chegg answer
Discuss the benefits of cloud computing in a brief  paragraph
Discuss the benefits of cloud computing in a brief  paragraph
In your own words explain the difference between two types of cloud computing: Platform as a...
In your own words explain the difference between two types of cloud computing: Platform as a service (PaaS) and .Infrastructure as a service (IaaS). Give at least 2 examples of PaaS and 1 example of IaaS AWS solutions implemented by Zillow. Describe main features and benefits of each .
Describe the following cloud computing principles:    Self-service portal Select a cloud service provider of your choice...
Describe the following cloud computing principles:    Self-service portal Select a cloud service provider of your choice (AWS, Azure, etc.) and briefly describe 5 offerings out of their self-service portal. Do not copy and paste their marketing material Symmetric encryption   Hashing Hardened virtual server images Include an example of a resource in which you can obtain a hardened virtual server image and include the link
Discuss, in your own words using 500 words or more, how business process as a service...
Discuss, in your own words using 500 words or more, how business process as a service (BPaaS) reduces risk for commercial enterprises. Don't rewrite already existing chegg anw
Many firms are relying on cloud computing, also known as “the cloud,” to perform key business...
Many firms are relying on cloud computing, also known as “the cloud,” to perform key business functions. By moving transactional processing to the cloud, firms are exposing themselves to additional attacks as well as to tighter scrutiny from regulators and stakeholders. From the e-Activity, assume that you are the CFO of Amazon.com. Create an argument indicating how your firm will be able to balance the needs of security with the desire of being a dominant player in the global market....
explain “cloud computing” cite your source of information
explain “cloud computing” cite your source of information
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT