Reporting to the cloud service provider
If an organization operates on cloud servers or environments, a fifth entity that must be kept in the loop is the Cloud Service Provider (CSP). Security in the cloud is largely guided by the principles of a shared responsibility model. The CSP and the enterprise are both responsible for monitoring for compromises, but each one is responsible for monitoring different parts of the technology stack. The CSP will focus on monitoring infrastructure and the platform with some services around the network edge layer. They take care of physical assets and the underlying software that powers the cloud platform, while we, as customers, are responsible for the data we own and transact within the cloud.
In my opinion, a CSP is more likely to detect compromises in the infrastructure or platform, but cloud consumers will most likely detect incidents in their apps and data. As CSPs have no visibility of their customers' data, they will not be able...