Question

An organization is in the process of evaluating service providers for an upcoming migration to cloud-based services for the organization's ERP system. As part of the requirements defined by the project team, regulatory requirements specify segmentation and isolation of the organization's data.

Which of the following should the vendor management team identify as a requirement during the procurement process?

A. Public cloud services with single-tenancy IaaS architectures
B. Private cloud services with single-tenancy PaaS services
C. Private cloud services with multitenancy in place for private SaaS environments
D. Public cloud services with private SaaS environments supported by private IaaS backbones

Answer 1

The organization should opt for private cloud services with single-tenancy PaaS services to meet regulatory requirements for data isolation and segmentation, ensuring a secure and controlled environment.

Step-by-step explanation:

The vendor management team should identify private cloud services with single-tenancy Platform as a Service (PaaS) services as a requirement during the procurement process to ensure segmentation and isolation of the organization's data in compliance with regulatory requirements. This infrastructure option provides a higher level of security and control compared to multitenant environments or public cloud offerings, which is essential for sensitive data handled by an ERP system. Moreover, a private cloud is dedicated to a single organization and not shared with others, which meets the need for isolation. The Platform as a Service (PaaS) model allows organizations to develop, run, and manage applications without the complexity of building and maintaining the infrastructure typically associated with developing and launching an app.