Which of the following will BEST provide an organization with ongoing assurance of the information security services provided by a cloud provider?
A. Requiring periodic self-assessments by the provider
B. Evaluating the provider’s security incident response plan
C. Continuous monitoring of an information security risk profile
D. Ensuring the provider’s roles and responsibilities are established
A. Requiring periodic self-assessments by the provider
B. Evaluating the provider’s security incident response plan
C. Continuous monitoring of an information security risk profile
D. Ensuring the provider’s roles and responsibilities are established