Melania wants to conduct a security audit of her cloud IaaS vendor's systems, infrastructure, and practices. What type of audit is she most likely to be able to conduct?

Most IaaS vendors do not allow customers direct audit access to their systems and infrastructure. Melania may request and review the vendor's third-party audit reports, which major IaaS providers often make available publicly or to customers. Internal audits assess an organization's own processes, and third-party audits of the vendor are conducted by the vendor's auditors.