This content is open to everyone — sign in to save your progress, earn points, and unlock module exams.
Topic 3.7 of Cloud Security Controls and Frameworks
The four-phase cloud audit process, API-based evidence collection, AWS Config continuous compliance, and CERT-In audit requirements for Indian organisations.
By the end of this topic, you will
Quadrant 1 · e-Tutorial
Quadrant 2 · e-Content
Quadrant 3 · Web Resources
Downloadable reference material
External links
AWS Config Documentation
AWS Config documentation covering managed rules, custom rules, remediation, and conformance packs.
CERT-In Empanelled Auditors List
CERT-In portal listing approved IS auditing organisations for Indian regulatory compliance.
AWS Audit Manager
AWS Audit Manager for continuous compliance evidence collection against frameworks.
ISO 27001:2022 Cloud Controls Mapping
ISO 27001:2022 with Annex A controls mapped to cloud security requirements.
Quadrant 4 · Self-Assessment
Controls, Standards and Testing
CSA CCM v4, NIST CSF 2.0, ENISA, CSPM, CWPP, CASB, CIEM, CSMV, and cloud penetration testing tools.
Cloud Security: Complete Assessment
Comprehensive 120-question assessment covering all six chapters of the Cloud Security eBook 2026.