E025 WGU
1. ISO 27001 Information security management system (ISMS) that guides security policies, risk
management, and trust.
2. ISO/IEC 27018 Protection of personally identifiable information (PII) in the cloud that shapes
privacy policies, data residency, and control over PII.
3. NIST SP 800-53 Comprehensive security and privacy controls for federal systems that informs
control selection for robust cloud security, especially for government data.
4. GDPR EU data protection and privacy for EU residents that mandates data subject rights,
consent, and cross-border data transfer rules.
5. CSA (Cloud Secu- Defines cloud security best practices and provides guidance for risk management
rity Alliance) and security architecture.
6. CSA STAR Public registry of cloud provider security controls that aids vendor selection and
transparency in security.
7. CSA CCM Cybersecurity control framework specifically for cloud computing that is founda-
tional for establishing cloud-specific security controls and policies.
8. LGPD Brazil's general data protection law that requires governance for personal data of
Brazilian residents, consent, and Data Protection Impact Assessment (DPIA).
9. CCPA/CPRA California consumer privacy rights that mandate consumer rights and data mini-
mization for California residents' data.
10. SOC 2 Assesses service provider system security, availability, etc., providing assurance for
vendor selection and risk management.
11. HIPAA U.S. legislation for safeguarding protected health information (PHI) that dictates
specific governance for PHI; backend as a service (BAAs) access controls.
12. PCI DSS
, E025 WGU
vm
Security standards for protecting cardholder data that governs security controls for
credit card data (network segmentation, encryption).
13. FISMA U.S. framework for securing federal information systems that mandates specific
security controls for cloud services used by federal agencies.
14. CMMC U.S. Department of Defense framework for protecting federal contract information
(FCI) and controlled unclassified information (CUI) that requires defense contrac-
tors to meet cybersecurity maturity levels for cloud data.
15. CloudWatch A monitoring and observability service that provides data and actionable insights
to monitor applications, infrastructure, and resources in AWS and on-premises.
16. JSON A lightweight, human-readable data-interchange format that uses key-value pairs
and arrays to represent structured data.
17. API calls Requests made by software applications to interact with an application program-
ming interface (API) to exchange data or trigger specific functions offered by
another service or system.
18. public key infra- A system of hardware, software, policies, and procedures used to create, man-
structure (PKI) age, distribute, use, store, and revoke digital certificates for authenticating and
encrypting communications between users, devices, and services hosted in the
cloud environment.
19. generative AI A type of artificial intelligence that can create new content, such as images, text, or
music, based on patterns and examples it has been trained on.
20. Component Trust The logical separation points between different parts of a cloud system where
Boundaries varying levels of trust are assigned and where security controls are enforced to
manage interactions and potential risks between those components.
21.
1. ISO 27001 Information security management system (ISMS) that guides security policies, risk
management, and trust.
2. ISO/IEC 27018 Protection of personally identifiable information (PII) in the cloud that shapes
privacy policies, data residency, and control over PII.
3. NIST SP 800-53 Comprehensive security and privacy controls for federal systems that informs
control selection for robust cloud security, especially for government data.
4. GDPR EU data protection and privacy for EU residents that mandates data subject rights,
consent, and cross-border data transfer rules.
5. CSA (Cloud Secu- Defines cloud security best practices and provides guidance for risk management
rity Alliance) and security architecture.
6. CSA STAR Public registry of cloud provider security controls that aids vendor selection and
transparency in security.
7. CSA CCM Cybersecurity control framework specifically for cloud computing that is founda-
tional for establishing cloud-specific security controls and policies.
8. LGPD Brazil's general data protection law that requires governance for personal data of
Brazilian residents, consent, and Data Protection Impact Assessment (DPIA).
9. CCPA/CPRA California consumer privacy rights that mandate consumer rights and data mini-
mization for California residents' data.
10. SOC 2 Assesses service provider system security, availability, etc., providing assurance for
vendor selection and risk management.
11. HIPAA U.S. legislation for safeguarding protected health information (PHI) that dictates
specific governance for PHI; backend as a service (BAAs) access controls.
12. PCI DSS
, E025 WGU
vm
Security standards for protecting cardholder data that governs security controls for
credit card data (network segmentation, encryption).
13. FISMA U.S. framework for securing federal information systems that mandates specific
security controls for cloud services used by federal agencies.
14. CMMC U.S. Department of Defense framework for protecting federal contract information
(FCI) and controlled unclassified information (CUI) that requires defense contrac-
tors to meet cybersecurity maturity levels for cloud data.
15. CloudWatch A monitoring and observability service that provides data and actionable insights
to monitor applications, infrastructure, and resources in AWS and on-premises.
16. JSON A lightweight, human-readable data-interchange format that uses key-value pairs
and arrays to represent structured data.
17. API calls Requests made by software applications to interact with an application program-
ming interface (API) to exchange data or trigger specific functions offered by
another service or system.
18. public key infra- A system of hardware, software, policies, and procedures used to create, man-
structure (PKI) age, distribute, use, store, and revoke digital certificates for authenticating and
encrypting communications between users, devices, and services hosted in the
cloud environment.
19. generative AI A type of artificial intelligence that can create new content, such as images, text, or
music, based on patterns and examples it has been trained on.
20. Component Trust The logical separation points between different parts of a cloud system where
Boundaries varying levels of trust are assigned and where security controls are enforced to
manage interactions and potential risks between those components.
21.
