There is no security standard for cloud; move forward anyway