Cloud Policy by Context
Apply the right controls to the right systems with the right context
Cloud policy automation is impossible unless the platform you use applies the right policy controls for the time, place, and systems or data affected.
If your sandbox or development databases are not governed by HIPPA or PCI, for example, applying stringent controls wastes development time and valuable resources. But if you lower your control level in the name of efficiency, that could leave production exposed. Neither of which makes good security or business sense.