Which strategic approach is most appropriate for managing a multi-cloud environment that includes multiple IaaS and PaaS providers?
Allow each department to manage their own cloud services independently.
Use a single security tool for all providers.
Rely on each provider's native security features with limited additional oversight.
Implement strict governance and monitoring procedures across all platforms.
In amulti-cloud environment, organizations must implementcentralized governance, security policies, and monitoringto:
Ensure complianceacross multiple providers (AWS, Azure, Google Cloud, etc.).
Standardize security policiesto avoid inconsistencies and misconfigurations.
Use Cloud Security Posture Management (CSPM) toolsto automate security compliance and misconfiguration detection.
Prevent cloud sprawlby enforcing identity and access policies across multiple providers.
This aligns with:
CCSK v5 - Security Guidance v4.0, Domain 2 (Governance and Risk Management)
CSA’s Cloud Security Alliance (CCM) - Cloud Security Operations Best Practices.
Submit