During a compliance meeting at a financial organization utilizing cloud services, the team debates over which security aspects are handled by the service provider. What is the service provider directly responsible for in terms of infrastructure?
Establishing access controls within the client’s organizational units.
Ensuring the physical security of the data center facilities.
Implementing encryption mechanisms for stored client information.
Conducting internal security audits on client applications.