Kevin's action of adding another CPU to his server is best described as vertical scaling, which involves increasing the capacity of a single server by adding resources like CPUs or memory, rather than adding more servers.

The provider must maintain security patches on the host operating system is least applicable because in a Type I hypervisor environment, the host OS is typically abstracted away from customers, who focus on guest OS security.

In the SaaS model, the cloud service provider is responsible for most security controls, including data protection and application security, while users focus on managing their data and user access.

The CSA CCM (Cloud Security Alliance Cloud Controls Matrix) specifically provides a framework for mapping cloud security controls to various regulatory standards, making it the best choice for Greg's needs.

Wanda's approach of placing computing power on the sensors to preprocess data before sending it to the cloud is best described as edge computing. This term refers to processing data closer to the source, reducing latency and bandwidth usage.

The incorrect statement is that cloud computing customers provision resources through the service provider's sales team. In reality, customers typically provision resources directly through a self-service portal.

Helen's payroll system is accessed via the web, making it a software application provided over the internet. This aligns with Software as a Service (SaaS), where users utilize software hosted on a cloud platform without managing the underlying infrastructure.