An organization falls under the compliance regulations for PCI. The organization will deploy applications in the
public cloud and wants to use a public cloud provider that is PCI compliant.
How does the organization confirm compliance?
A.
Provide third party audit documentation to the provider for review
B.
Review the provider’s compliance controls and third party audit documentation
C.
Review the provider’s infrastructure logs and access logs
D.
Provide application logs to the provider for review
Explanation: