These three cloud service models are abbreviated as IaaS, PaaS, and SaaS. 

This document outlines the overall authority, scope, and responsibilities of the audit function.

This quality concept focuses on defect prevention and is process-oriented, involving a planned system of review procedures.

These four purposes explain why organizations implement risk management.

This type of malware encrypts a victim's files and demands payment for the decryption key, as discussed in the John Oliver video.

This cloud deployment model combines both private and public clouds, with private clouds augmented by resources from public clouds.

The three main phases of an IT Audit are planning, testing, and this final phase where findings are reported.

This quality concept focuses on defect identification in end products and is a reactive process implementing routine technical activities to measure and control quality.

In this risk control strategy, you shift risks to other areas or outside entities to handle, possibly by purchasing insurance or outsourcing.

According to the Cloud Security Alliance, these are the top 9 cloud computing threats, including Data Breaches, Account Hijacking, and Insecure APIs

Most security problems in cloud computing stem from these three issues: loss of control, lack of trust mechanisms, and this concept where multiple customers share resources.

In the Planning Phase, this defines the conceptual and physical boundary within which a security audit will focus

In the Quality Improvement Model, after collecting data and selecting measures, you must determine if the process has this characteristic, meaning it's free from special causes of variation.

This risk control strategy involves properly identifying and acknowledging risks, but choosing not to control them, appropriate when the cost to protect exceeds the cost to replace.

This security approach mentioned in the Lenovo video suggests not automatically trusting anyone or anything, requiring verification before granting access.