This discussion focuses on mapping cloud security controls to existing frameworks or regulations.
Download the Cloud Security Alliance (CSA) Cloud Controls Matrix spreadsheet. (A quick Internet search should give you the address of the most current version for download.) Under the “Scope Applicability” heading, select a category that is applicable to the organization for which you work. For example, if your organization handle personal medical data and uses the COBIT framework, you could choose either COBIT or HIPAA/HITECH. Once you select a category, choose row from “Control Domain” (that no other student has already selected!) Then, create a new thread in this week’s discussion with the title from column B (i.e. CCM V3.0 Control ID.) Explain the control domain, how it maps to your chosen scope, and specifically what your organization does to implement the stated control.
If you don’t know which scope applies to your organization, just use the (UC) as your organization. As a university, we are under the domain of FERPA, So, is you choose UC, you would need to choose a Control Domain and explain how it maps to FERPA, and how UC implements the controls.
So, here’s an example. Let’s suppose I work for a large on-line retailer. We handle payment cards and are therefore under PCI DSS requirements. I’ll select BCR-03 control ID (Business Continuity Planning.) So I would create a new thread in this week’s discussion with the title “BCR-03.” Then I’d explain what BCR-03 is, what it maps to in PCI DSS (4.1, 4.1.1, 9.1, 9.2), and then I’d explain what my organization does to comply with this control requirement.
Review chapter 12: Requirements Cookbook of the course text.
In your own words discuss the base requirements that can help you design the following:
Understand the space of security requirements better
Quickly crystalize more precise requirements
You have to be 100% sure of the quality of your product to give a money-back guarantee. This describes us perfectly. Make sure that this guarantee is totally transparent.Read more
Each paper is composed from scratch, according to your instructions. It is then checked by our plagiarism-detection software. There is no gap where plagiarism could squeeze in.Read more
Thanks to our free revisions, there is no way for you to be unsatisfied. We will work on your paper until you are completely happy with the result.Read more
Your email is safe, as we store it according to international data protection rules. Your bank details are secure, as we use only reliable payment systems.Read more
By sending us your money, you buy the service we provide. Check out our terms and conditions if you prefer business talks to be laid out in official language.Read more