security architecture discussion
Smart Hitter
This discussion focuses on mapping cloud security controls to existing frameworks or regulations.
Download the Cloud Security Alliance (CSA) Cloud Controls Matrix spreadsheet. (A quick Internet search should give you the address of the most current version for download.) Under the "Scope Applicability" heading, select a category that is applicable to the organization for which you work. For example, if your organization handle personal medical data and uses the COBIT framework, you could choose either COBIT or HIPAA/HITECH. Once you select a category, choose row from "Control Domain" (that no other student has already selected!) Then, create a new thread in this week's discussion with the title from column B (i.e. CCM V3.0 Control ID.) Explain the control domain, how it maps to your chosen scope, and specifically what your organization does to implement the stated control.
So, here's an example. Let's suppose I work for a large on-line retailer. We handle payment cards and are therefore under PCI DSS requirements. I'll select BCR-03 control ID (Business Continuity Planning.) So I would create a new thread in this week's discussion with the title "BCR-03." Then I'd explain what BCR-03 is, what it maps to in PCI DSS (4.1, 4.1.1, 9.1, 9.2), and then I'd explain what my organization does to comply with this control requirement.
9 years ago
3
Purchase the answer to view it
BCR-03controlID.docx
- Effective implementation of a public health campaign on Adult Mental Health e.g Dementia, Alzheimer’s
- Technical Paper due in 12 hours
- Business writing
- 7 pages essay
- Course Project - Annotated Bibliography
- Resiliency Factors and Prosocial Behavior
- Essay one page for 1- Edwidge Danticat 2 - Dany Laferriere 3- kate chopin 4- Michele lalonde
- Eth 321 Final Paper
- ECO 550 midterm exam part 1
- FIN 534
