Cloud Provider Evaluation
Hello, I have been involved in a cloud provider evaluation, and I do not know where to start to assess the level of security in each of the providers my company is considering. Anyone in here has experience assessing cloud providers and can guide me through the process?
What do you mean with cloud provider evaluation? what is exactly what you need to evaluate? what providers?
I can't disclose the providers, but I have to evaluate the security in place for different cloud providers. Is there any methodology or resources I can use to compare them?
Have you look in the CSA website? You have the CAIQ questionnaires and the STAR Registry. This should get you started to evaluate the provider.
Thanks¡ this is helpful¡ I wasnt familiar with these tools.The STAR Cloud registry has different levels, which level of assurance is recommend for an Enterprise?