A risk mitigation approach for autonomous cloud intrusion response system