Is your cloud full of holes?

I am working up a site which lets people anonymously compare their security practices with current industry best practices and possibly to crosslink with regulations and PCI requirements. The first section is going to be about Cloud Computing practices.
Please comment and help.
This is going to be useful for almost everybody. People are so close to their own network that they may not be able to see where they are not following best practices and they may not even know what those practices are.
I am using the reference practices from various sources, as well as my own experience. I want to have as many people in the final project as possible, as it will make more networks more secure.
Knowledge is Power