WEBVTT

00:00:02.540 --> 00:00:03.580
In conclusion,

00:00:03.590 --> 00:00:08.700
it's good to start contemplating the specific level of assurance that your

00:00:08.700 --> 00:00:14.000
business requires based upon the business needs, and what is it that you

00:00:14.000 --> 00:00:17.990
will use in order to get the level of assurance needed. Will you use

00:00:17.990 --> 00:00:24.680
EuroCloud, StarAudit, Cloud Security Alliance STAR registry, and to what

00:00:24.680 --> 00:00:27.130
level of assurance do you need?

00:00:27.140 --> 00:00:32.259
An attestation based upon SOC reports, a certification based upon ISO

00:00:32.259 --> 00:00:36.130
standards? Be sure to understand what your organization requires based

00:00:36.130 --> 00:00:39.950
off of regulatory and legal implications.

00:00:40.040 --> 00:00:44.650
It's also good for us to consider that the CSP, what

00:00:44.650 --> 00:00:47.910
program they have established for audit.

00:00:47.920 --> 00:00:53.530
All of this has levels of publicly accessible information until you're ready to

00:00:53.530 --> 00:01:01.300
engage in a more committed fashion where you might sign an NDA in order to read

00:01:01.300 --> 00:01:04.760
further information inside of a SOC 2 report.

00:01:05.940 --> 00:01:09.790
I am so pleased and thankful that you joined me for this course,

00:01:09.800 --> 00:01:12.470
Legal, Risk, and Compliance for CCSP.

00:01:12.480 --> 00:01:18.240
Wishing you success as you're planning for the certification exam, and look

00:01:18.240 --> 00:01:22.350
forward to seeing you around here again on Pluralsight!