Imagine you are an Information Security Manager in a medium-sized organization. Your CIO has asked you to prepare a case analysis report and presentation on establishing internal controls in cloud computing. The CIO was reviewing Cloud Computing Security Case Studies and Research. However, he noticed that these case studies addressed the benefits but did very little to address the risks and vulnerabilities of cloud computing and how organizations can control these risks and vulnerabilities. Additionally, he needs more information about private clouds, public clouds, and hybrid clouds.
Write a three (3) page paper in which you:
1. Provide a summary analysis of the highlights and projected results from the case studies mentioned here.
2. Examine the risks and vulnerabilities associated with public clouds, private clouds, and hybrids; include examples applicable from the case studies you previously reviewed.
3. Suggest controls that organizations could implement to mitigate these risks and vulnerabilities.
4. Develop a list of IT audit tasks that address a cloud computing environment based on the results from the analysis of the case studies, the risks and vulnerabilities, and the mitigation controls.
Use at least four (4) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.