The goal of this presentation is to assist IT Risk and Security professionals with adding Cloud computing forensics to their Incident Response team. It should assist them with understanding the technical ways of capturing forensic data from cloud service providers using security controls that incorporate and integrate logging, chain of evidence, virtualization and cloud security architecture, and key performance indicators.