Question

you are the security manager for a retail sales company that uses a software as a service (saas) public cloud service. one of your employees uploads sensitive information they were not authorized to put in the cloud. an administrator working for the cloud provider accesses that information and uses it for an illegal purpose, benefiting the administrator and causing harm to your organization. after you perform all the incident-response activity related to the situation, your organization determines that the price of the damage was us$125,000. your organization sues the cloud provider, and the jury determines that your organization shares in the blame (liability) for the loss because it was your employee performing an unauthorized action that created the situation. if the jury determines that 25 percent of the evidence shows that the situation was your organization’s fault and 75 percent of the evidence shows that the situation was the cloud provider’s fault, what is the likely outcome?

Answer 1

The likely outcome is that the cloud provider will be forced to pay your company, but not all of the money that your company lost will be returned. Perhaps a percent of the 125,000 will be given to your company.

Step-by-step explanation:

By the way I think that this was supposed to be posted under the "law and government" tab.