A pharmaceutical company is migrating its systems and infrastructure to the cloud. Due to security restrictions and regulatory policies, the company Chief Executive Officer (CEO) is concerned about moving this information to the cloud.
Based on the CEO’s concern, which of the following should the company do First?
- Review compliance requirements.
- Apply defined audit/compliance requirements.
- Review company security policies.
- Update the security tools to systems and services.