Design a comprehensive security audit framework for a cloud-based SaaS application that addresses compliance, risk assessment, and continuous monitoring.