If you were tasked with designing a security plan for a cloud environment, what considerations would you include?