An organization wants to implement a hybrid cloud strategy and understand the security implications of its responsibility matrix. What should the organization consider in this analysis?

A$.$The organization should consider choosing the cloud provider based only on pricing for the security responsibilities.

B$.$They should use a full Infrastructure as a Service $($IaaS$)$ model, handing infrastructure security responsibilities to the cloud provider.

C$.$They should balance security duties between on$-$premises and cloud to ensure a clear definition in the responsibility matrix.

D$.$The organization should consider completely relying on third$-$party security audits for managing security responsibilities.