Hey Guys,
I am new to Cloud Security, currently working in a B2B SAAS Startup. I just wanted to know more about CAIQ Questionnaire. I opened it and most of the things are CSP owned(AWS in our case), very few things are CSC owned and some are shared.
I wanted to answer CAIQ for our startup. From what perspective should i answer the questions and what questions should i answer?
For e.g. We are a CSC(since we are using AWS Cloud as a company) but we are a CSP as well(We are offering SAAS B2B Application), I am genuinely very confused. Pave the path for me.
Thanks