Topic 1: Section 3.1.1.4 of Security Guidance for Critical Areas of Focus in Cloud Computing provides several examples of information privacy and security laws, as well as legal frameworks from across the world. Select one of these areas, laws, or frameworks and discuss how it would impact a US-based company storing data with a cloud service provider or doing business with an organization or individual covered under that area, law, or framework.
Topic 2: Review Domain 4 of Security Guidance for Critical Areas of Focus in Cloud Computing. Your organization is transitioning workload from an on-prem data center to a PaaS cloud service offering. Discuss one specific way in which your audit activities must change to address the new hosting structure. What types of impacts could this change have?
