Q1-
Discuss how security for a “traditional” information system will change when you transfer that system into
the cloud. Specifically what are the security implications of using each of the three cloud service models
(SaaS, PaaS, laaS) that are unique to cloud computing? (How is cloud security different than traditional
security?)
Q2-
Given the nature of cloud computing multi-tenancy model what risk management practices would you
recommend putting in place (assume that there are none in place currently) to minimize the likelihood and
severity of a data breach occurring in the cloud that contains your data? Make sure you identify which
cloud service model and cloud deployment model you are writing about.
Q3-
You come into your office Monday morning and the CIO announces that they plan to move the entire
human resource system and patient heaithcare system into the cloud. The CiO forgot to invite you to a
meeting that he is hosting which will be occurring in 30 minutes with you, the CEO the potential cloud
service provider. Document 5 questions that you plan to ask the cloud service provider which will provide
you with the basis of your recommendation of should your organization trust this provider's ability to keep
your systems and information secure. Provide a brief (1 to 2 sentences) per question as to why you want to
know the answer to that question. Why is it important? Assume they are using a SaaS model.