An enterprise is beginning its journey to IT-as-a-Service (ITaaS), and has retained a Cloud
Architect to assist them. An assessment of their current environment is complete and a list of final
requirements is being generated.
What should the Cloud Architect recommend as the next step?

A.
A Gap Analysis to compare the current state to the enterprise goals and IT strategic goals

B.
A Controls Matrix to evaluate GRC vulnerabilities

C.
A Balanced Scorecard to identify risks from the current state

D.
Right-Sourced Workloads to look at applications and where to put them