A financial organization is migrating its workload to a cloud service provider. What task would typically remain under the organization's obligations according to the principles of the shared responsibility model?
Applying security patches to the operating system of managed servers
Managing infrastructure such as underlying servers or storage devices
Installing physical security measures at data center locations
Implementing encryption for their stored data
Ensuring the underlying cloud infrastructure hardware is functioning
According to the shared responsibility model in cloud computing, the security and compliance obligations are split between the cloud service provider and the cloud customer. The service provider is responsible for the security of the cloud infrastructure itself (also known as 'security of the cloud'), while the customer must manage the security of what they put in the cloud (or 'security in the cloud'). This includes data encryption, identity and access management, network traffic protection for customer-created or managed resources, and other data-related security concerns. It is important for customers to understand that they retain control and therefore responsibility for securing their own data.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the shared responsibility model in cloud computing?
Open an interactive chat with Bash
Why is encryption important for stored data in the cloud?
Open an interactive chat with Bash
What are some examples of security measures organizations should implement in the cloud?