Measures and practices designed to protect cloud-based systems, data, and infrastructure from threats.

Infrastructure as a Service; a cloud service model providing virtualized computing resources over the internet.

Platform as a Service; a cloud service model that offers hardware and software tools over the internet.

Software as a Service; a cloud service model delivering software applications via the internet.

The process of converting data into a coded format to prevent unauthorized access.

Framework for managing digital identities and access permissions in a cloud environment.

Regulatory requirements that organizations must adhere to when managing data in the cloud.

The process of detecting, responding to, and recovering from security incidents in cloud environments.

A systematic evaluation of security weaknesses in a cloud infrastructure.

Simulated cyber attacks to test the security of a cloud system and identify vulnerabilities.

The process of identifying and evaluating risks associated with cloud security.

An access control mechanism that restricts system access to authorized users based on their roles.

The practice of recording and analyzing system activities to detect security events.

Strategies and processes to safeguard sensitive data from unauthorized access or breaches.

Formalized rules and guidelines that govern security practices within a cloud environment.

An evaluation to ensure adherence to compliance standards and regulations.

A documented strategy outlining procedures for addressing security incidents.

A company that offers cloud computing services such as storage, applications, and infrastructure.

Safeguards or countermeasures to mitigate risks and protect cloud resources.

The process of identifying and assessing potential threats to a cloud system.

A cloud environment that frequently changes, requiring adaptable security measures.

A structured approach to managing security risks and implementing security controls.

A discussion-based simulation of an incident response scenario to test response plans.

A visual representation of the components and relationships within a cloud infrastructure.

The overall security status of an organization, including its policies, controls, and measures.

The process of ensuring that cloud services adhere to relevant laws and regulations.