IT Control Objectives for Cloud Computing: Controls and Assurance in the Cloud

Citation
ISACA, IT Control Objectives for Cloud Computing: Controls and Assurance in the Cloud (2011) (http://www.isaca.org/Knowledge-Center/Research/Documents/ITCO_Cloud_SAMPLE_E-book_20July2011.pdf Chapters 1 and 2).

Overview
This publication focuses on IT governance controls that are customizable for the cloud. This approach recognizes the unique nature of the cloud as a challenge to classic/conventional audit processes and techniques. It also focuses on IT processes &mdash; not functions or applications &mdash; from the process owners perspective, who principally assumes the responsibility of the IT functions that support and enable the business processes under their purview.