Three security issues loom large over the future of Cloud Computing: 1) Will corporate IT security policies still apply to the applications and services delivered via the cloud? 2) How will a CIO prove to management and clients that the company’s applications and services are as secure as before the cloud and meeting all SLAs? 3) Will security be robust enough to pass any compliance audits required? Only when each of these 3 concerns can be answered with a resounding “YES!”, will cloud computing be finally considered secure. Meanwhile, what will IT leaders and vendors have to consider, change, revamp, or manage differently in order to achieve this end goal?