Continuous Auditing and Continuous Certification of Cloud Services in MEDINA – Security Auditor’s View [version 2; peer review: 2 approved]

Tatu Suhonen; Cristina Martínez

Open Research Europe (May 2024)

Continuous Auditing and Continuous Certification of Cloud Services in MEDINA – Security Auditor’s View [version 2; peer review: 2 approved]

Tatu Suhonen,
Cristina Martínez

Affiliations

Tatu Suhonen: Nixu Certification Ltd, ESPOO, 02150, Finland
Cristina Martínez: ORCiD; Fundacion Tecnalia Research & Innovation, San Sebastián, Basque Country, E-20009, Spain

Journal volume & issue: Vol. 3

Abstract

Read online

This paper discusses views on continuous auditing and continuous certification of cloud services in the context of the MEDINA EU project and the security auditing industry. Based on an introduction of MEDINA, the notions of continuous auditing and continuous certification are introduced from a security auditor’s perspective to discuss the opportunities and challenges related to these topics. The paper also discusses further actions beyond this project in order to provide feedback on how continuous auditing and certification can be developed and introduced to the market.

Published in Open Research Europe

ISSN: 2732-5121 (Online)
Publisher: F1000 Research Ltd
Country of publisher: United Kingdom
LCC subjects: Social Sciences
Website: https://open-research-europe.ec.europa.eu/

About the journal

Abstract

Keywords