Implementation -> Infrastructure Hardening: Usage of an security account

Risk: Having security auditing in the same account as infrastructure and applications at the cloud provide might cause evil administrators (or threat actors taking over an account of an administrator) to alter evidence like audit logs.

Opportunity: Usage of a seperate account dedicated for security activities.

Usefullness: High

Required knowledge: Medium (two disciplines)

Required time: Low

Required resources (systems): Medium