Part 3:Executing an Effective Enterprise Cloud Audit Plan

On completing this section, the reader will bring together the knowledge gained in previous chapters to effectively assess their cloud environments for risk, compliance, and adherence to IT general computing controls and standard compliance frameworks. This section provides an opportunity to practice performing some basic audit test steps, and allows the reader to get foundational hands-on experience to prepare for more complex auditing.

This part comprises the following chapters:

• Chapter 6, Tips and Techniques for Advanced Auditing
• Chapter 7, Tools for Monitoring and Assessing
• Chapter 8, Walk-Through – Assessing IAM Controls
• Chapter 9, Walk-Through – Assessing Policy Settings and Resource Controls
• Chapter 10, Walk-Through – Assessing Change Management, Logging, and Monitoring Policies