During a compliance meeting at a financial organization utilizing cloud services, the team debates over which security aspects are handled by the service provider. What is the service provider directly responsible for in terms of infrastructure?
Conducting internal security audits on client applications.
Establishing access controls within the client’s organizational units.
Implementing encryption mechanisms for stored client information.
Ensuring the physical security of the data center facilities.