Rating: 0 out of 5 stars
0 ratings
Ebook56 pages41 minutes
Cloud Security and Governance: Who's on your cloud?
By Sumner Blount and Rob Zanella
Rating: 1 out of 5 stars
1/5
()
About this ebook
Increasingly worried about security and compliance in the Cloud?
The rise of Cloud Computing, with services delivered “in the cloud”, offers businesses incredible power and flexibility. It promises the efficient use of human and financial capital resources, reducing infrastructure and operation costs. It proposes a model of computing that is effective at meeting the demands of business in a rapidly changing environment.
Security and Compliance IssuesOne of the most difficult challenges related to Cloud Computing, revolves around the security and compliance issues associated with it. This is a major concern and will continue to be so, with the ever increasing onslaught of regulations impacting security controls.
This pocket guide explains and highlights some of the key security and compliance issues surrounding Cloud adoption, and provides helpful insight into how they can be addressed.
Author
Sumner Blount
Sumner Blount has been associated with the development and marketing of software products for over 25 years. He has managed the large computer operating system development group at Digital Equipment and Prime Computer, and was Director of Software for Pathway Designs. He later was instrumental in the original conception and development of the DCE (Distributed Computing Environment) technology from the Open Software Foundation, and served as the DCE Program Manager within Digital. He also was the Chairman of the DCE Special Interest Group for five years. More recently, he has held a number of Product Management positions, including management of the Distributed Computing Product Management group at Digital and Senior Product Manager at Netegrity. He came to CA Technologies in 2004, where he has served in the Security and the GRC product marketing groups. He currently is the Director of Security Solutions and focuses primarily on compliance issues. He is the author of several industry journal articles, and has spoken at a number of industry conferences.
Related authors
Related to Cloud Security and Governance
Related ebooks
Cloud Computing: Assessing the risks CSA Guide to Cloud Computing: Implementing Cloud Privacy and Security Rating: 0 out of 5 stars0 ratingsSecuring Cloud Services - A pragmatic guide: Second edition Rating: 0 out of 5 stars0 ratingsSecurity Engineering: CISSP, #3 Rating: 0 out of 5 stars0 ratingsA Practitioner's Guide to Adapting the NIST Cybersecurity Framework Rating: 0 out of 5 stars0 ratingsGovernance and Internal Controls for Cutting Edge IT Rating: 0 out of 5 stars0 ratingsSecuring Cloud Services: A pragmatic approach to security architecture in the Cloud Rating: 0 out of 5 stars0 ratingsData Protection and the Cloud: Are the risks too great? Rating: 4 out of 5 stars4/5Cyber Essentials: A Pocket Guide Rating: 5 out of 5 stars5/5Building Effective Cybersecurity Programs: A Security Manager’s Handbook Rating: 4 out of 5 stars4/5The Official (ISC)2 CCSP CBK Reference Rating: 0 out of 5 stars0 ratingsInfosec Management Fundamentals Rating: 5 out of 5 stars5/5Cyber Security: Essential principles to secure your organisation Rating: 0 out of 5 stars0 ratingsMicrosoft Azure Security Rating: 0 out of 5 stars0 ratingsFundamentals of Adopting the NIST Cybersecurity Framework Rating: 0 out of 5 stars0 ratingsBuilding an Effective Cybersecurity Program, 2nd Edition Rating: 0 out of 5 stars0 ratingsThe EU Data Protection Code of Conduct for Cloud Service Providers: A guide to compliance Rating: 0 out of 5 stars0 ratingsCyber Essentials: A guide to the Cyber Essentials and Cyber Essentials Plus certifications Rating: 0 out of 5 stars0 ratingsGDPR for DevOp(Sec) - The laws, Controls and solutions Rating: 5 out of 5 stars5/5The Cyber Security Handbook – Prepare for, respond to and recover from cyber attacks Rating: 0 out of 5 stars0 ratingsFederal Cloud Computing: The Definitive Guide for Cloud Service Providers Rating: 5 out of 5 stars5/5Modern Cybersecurity Practices: Exploring And Implementing Agile Cybersecurity Frameworks and Strategies for Your Organization Rating: 0 out of 5 stars0 ratingsCybersecurity and Third-Party Risk: Third Party Threat Hunting Rating: 0 out of 5 stars0 ratingsCertified Cybersecurity Compliance Professional Rating: 5 out of 5 stars5/5Moving To The Cloud: Developing Apps in the New World of Cloud Computing Rating: 5 out of 5 stars5/5PKI A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratingsCCISO Third Edition Rating: 0 out of 5 stars0 ratingsCloud Security Strategy A Complete Guide - 2021 Edition Rating: 0 out of 5 stars0 ratings
Security For You
How to Be Invisible: Protect Your Home, Your Children, Your Assets, and Your Life Rating: 4 out of 5 stars4/5How to Become Anonymous, Secure and Free Online Rating: 5 out of 5 stars5/5Hacking : The Ultimate Comprehensive Step-By-Step Guide to the Basics of Ethical Hacking Rating: 5 out of 5 stars5/5Practical Lock Picking: A Physical Penetration Tester's Training Guide Rating: 5 out of 5 stars5/5Social Engineering: The Science of Human Hacking Rating: 3 out of 5 stars3/5Network+ Study Guide & Practice Exams Rating: 4 out of 5 stars4/5CompTIA Network+ Review Guide: Exam N10-008 Rating: 0 out of 5 stars0 ratingsCybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity Rating: 5 out of 5 stars5/5The Hacker Crackdown: Law and Disorder on the Electronic Frontier Rating: 4 out of 5 stars4/5Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5How to Hack Like a Pornstar Rating: 5 out of 5 stars5/5CompTIA Security+ Study Guide: Exam SY0-601 Rating: 5 out of 5 stars5/5Remote/WebCam Notarization : Basic Understanding Rating: 3 out of 5 stars3/5Hacking: Ultimate Beginner's Guide for Computer Hacking in 2018 and Beyond: Hacking in 2018, #1 Rating: 4 out of 5 stars4/5Cybersecurity For Dummies Rating: 4 out of 5 stars4/5The Cyber Attack Survival Manual: Tools for Surviving Everything from Identity Theft to the Digital Apocalypse Rating: 0 out of 5 stars0 ratingsCompTIA CySA+ Practice Tests: Exam CS0-002 Rating: 0 out of 5 stars0 ratingsWireless Hacking 101 Rating: 4 out of 5 stars4/5Dark Territory: The Secret History of Cyber War Rating: 4 out of 5 stars4/5Tor and the Dark Art of Anonymity Rating: 5 out of 5 stars5/5Make Your Smartphone 007 Smart Rating: 4 out of 5 stars4/5CompTIA CySA+ Cybersecurity Analyst Certification Passport (Exam CS0-002) Rating: 5 out of 5 stars5/5CompTIA Network+ Certification Guide (Exam N10-008): Unleash your full potential as a Network Administrator (English Edition) Rating: 0 out of 5 stars0 ratingsThe Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers Rating: 4 out of 5 stars4/5Mike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Ultimate Guide for Being Anonymous: Hacking the Planet, #4 Rating: 5 out of 5 stars5/5
Related podcast episodes
CyberWire Pro Interview Selects: Jaclyn Miller from NTT, Ltd. 0% found this document usefulThe Foolproof Way To Pass The CIPPE Exam In 2 Weeks 0% found this document usefulIs enhanced hardware security the answer to ransomware? [CyberWire-X] 100% found this document usefulBig breaches (and how to avoid them): with Neil Daswani 0% found this document usefulWhy container security is important - Part 1: Wes Widner joins me to discuss container security. 0% found this document usefulcybersecurity maturity model certification (CMMC) (noun) [Word Notes] 0% found this document usefulA CIOs view of Enterprise Architecture - What You Need to Know 0% found this document useful3 Rules for Enterprise Architecture Success 0% found this document usefulScale Out Cloud Storage 0% found this document usefulHow To Succeed With Privacy By Design 0% found this document useful
Related articles
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster” PC Pro MagazineArticle
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster”
Apr 10, 2022
6 min readWhat Should You Know About Cloud Security Solutions? HWM SingaporeArticle
What Should You Know About Cloud Security Solutions?
Apr 9, 2021
3 min readWhy Leaders Need To Take A Risk-based Approach To Data Security NZBusiness and ManagementArticle
Why Leaders Need To Take A Risk-based Approach To Data Security
Jul 21, 2021
5 min readEverything You Should Know About Cybersecurity Automation TechfastlyArticle
Everything You Should Know About Cybersecurity Automation
Jun 1, 2021
6 min readBusiness In The Cloud Business TodayArticle
Business In The Cloud
Oct 1, 2020
7 min readCyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL Inc.Article
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Sep 21, 2016
Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate
2 min readNetwork monitoring 2022 PC Pro MagazineArticle
Network monitoring 2022
Feb 10, 2022
4 min readAWS Vs Azure What’s The Difference? PC Pro MagazineArticle
AWS Vs Azure What’s The Difference?
Sep 11, 2022
7 min readDoes Quantum Cryptography Ensure Cyber Security? TechfastlyArticle
Does Quantum Cryptography Ensure Cyber Security?
Oct 1, 2021
5 min readCybersecurity Firm Fireeye Says Was Hacked By Nation State TechLife NewsArticle
Cybersecurity Firm Fireeye Says Was Hacked By Nation State
Dec 12, 2020
3 min readHow to Protect Your Small Business Against a Cyber Attack EntrepreneurArticle
How to Protect Your Small Business Against a Cyber Attack
Feb 1, 2013
8 min readTop Eight Cybersecurity Predictions For 2022-23 NZBusiness and ManagementArticle
Top Eight Cybersecurity Predictions For 2022-23
Jul 20, 2022
3 min readCybersecurity: It Might Be The Small Stuff That Gets You NZBusiness and ManagementArticle
Cybersecurity: It Might Be The Small Stuff That Gets You
Jan 16, 2020
2 min readWe Will Give Up Privacy for Convenience (or Free Pizza) FuturityArticle
We Will Give Up Privacy for Convenience (or Free Pizza)
Aug 4, 2017
5 min readArtificial Intelligence: The Next Step for Cybersecurity Cannabis & Tech TodayArticle
Artificial Intelligence: The Next Step for Cybersecurity
Apr 1, 2019
3 min readIntelligent Composable Business PC Pro MagazineArticle
Intelligent Composable Business
Mar 10, 2022
3 min readStaying Safe In The Cloud NZBusiness and ManagementArticle
Staying Safe In The Cloud
Jul 22, 2019
4 min readCloudy With No Chance Of Erp Architectural Review Asia PacificArticle
Cloudy With No Chance Of Erp
Nov 11, 2019
ERP (enterprise resource planning) was born around the time the first ‘[Something] for Dummies’ book was published*. It’s typically inflexible, uncompromising software designed for large businesses, like banks, large corporations, manufacturing and s
2 min readEdge and Cloud Computing Can They Coexist Peacefully? TechfastlyArticle
Edge and Cloud Computing Can They Coexist Peacefully?
Jun 1, 2022
6 min readThe Weakest Link Facility ManagementArticle
The Weakest Link
Jun 24, 2018
7 min readMaking The Most Of The Cloud Business TodayArticle
Making The Most Of The Cloud
Jul 8, 2021
6 min readMANAGING CYBERSECURITY: DevSecOps HWM SingaporeArticle
MANAGING CYBERSECURITY: DevSecOps
Feb 10, 2021
5 min readCreating a Cybersecurity Checklist Residential Tech TodayArticle
Creating a Cybersecurity Checklist
Aug 25, 2021
Cybersecurity technology has experienced a tremendous surge in consumer interest in 2021 that has shown no signs of slowing down. The trend is largely because developers are introducing numerous innovations in this realm, at a pace that meets market
4 min readIoT SECURITY: ARE WE READY FOR A QUANTUM WORLD? The European Business ReviewArticle
IoT SECURITY: ARE WE READY FOR A QUANTUM WORLD?
Sep 30, 2020
4 min readIoT Ransomware - How Healthcare Organizations Can Protect Themselves TechfastlyArticle
IoT Ransomware - How Healthcare Organizations Can Protect Themselves
Aug 2, 2021
5 min readHow Did Cybersecurity Become So Political? The AtlanticArticle
How Did Cybersecurity Become So Political?
Feb 2, 2017
3 min readManaging the Risks of Digital Lending Business TodayArticle
Managing the Risks of Digital Lending
Feb 18, 2022
TECHNOLOGY HAS BEEN the crux of the Indian banking system and the advent of Covid-19 has fuelled the shift of business models from ‘physical’ to ‘digital’. The journey of innovation, which started with internet banking and digital means of payments,
6 min readProtect Your Data APCArticle
Protect Your Data
Jul 13, 2020
13 min readHow Your Network Works MacLifeArticle
How Your Network Works
May 29, 2018
3 min readTypes Of Databases Linux FormatArticle
Types Of Databases
Aug 27, 2019
NoSQL databases provide the performance, scalability and stability that’s required by the modern data-driven apps we interact with these days. But that is where the similarity between NoSQL systems end. In fact, it wouldn’t be wrong to say that the o
1 min read
Reviews for Cloud Security and Governance
Rating: 1 out of 5 stars
1/5
1 rating0 reviews
Book preview
Cloud Security and Governance - Sumner Blount
Cloud Security and Governance
Who’s on your Cloud?
Cloud Security
and Governance
Who’s on your Cloud?
SUMNER BLOUNT
ROB ZANELLA
Every possible effort has been made to ensure that the information contained in this book is accurate at the time of going to press, and the publisher and the author cannot accept responsibility for any errors or omissions, however caused. No responsibility for loss or damage occasioned to any person acting, or refraining from action, as a result of the material in this publication can be accepted by the publisher or the author.
Apart from any fair dealing for the purposes of research or private study, or criticism or review, as permitted under the Copyright, Designs and Patents Act 1988, this publication may only be reproduced, stored or transmitted, in any form, or by any means, with the prior permission in writing of the publisher or, in the case of reprographic reproduction, in accordance with the terms of licences issued by the Copyright Licensing Agency. Enquiries concerning reproduction outside those terms should be sent to the publisher at the following address:
IT Governance Publishing
IT Governance Limited
Unit 3, Clive Court
Bartholomew’s Walk
Cambridgeshire Business Park
Ely
Cambridgeshire
CB7 4EH
United Kingdom
www.itgovernance.co.uk
© Sumner Blount and Rob Zanella 2010
The authors have asserted the rights of the author under the Copyright, Designs and Patents Act, 1988, to be identified as the authors of this work.
First published in the United Kingdom in 2010 by IT Governance Publishing.
ISBN 978-1-84928-098-3
FOREWORD
Shifting paradigms introduce a period of fear, uncertainty and doubt.
Organizations – as well as individual roles within the organization – find comfort in the old way of doing things, but are challenged to be innovative and leverage new approaches that bring agility, efficiency and effectiveness to enterprise operations. Cloud Computing is one of those paradigm shifts that is showing the power to completely revolutionize how technology delivers value to the business. It is aimed at the rapid provisioning and agility that business demands in its complex, dynamic and distributed business environment. It promises the efficient use of human and financial capital resources, reducing infrastructure and operation costs. It proposes a model of computing that is effective at meeting the requirements and demands of business in an environment that is changing rapidly.
However, the paradigm shift to Cloud Computing has introduced a major concern: security. How does business take advantage of the wealth of benefits that Cloud Computing promises while avoiding the compromise of confidentiality, integrity and availability of critical business information and processes? Many security officers and managers have dragged their feet and fought tooth and nail against this new paradigm in fear of security compromise. With an onslaught of regulations impacting security controls, this concern has continued to grow.
Just as an organization can have a secure infrastructure or an insecure infrastructure, the same is true of
Enjoying the preview?
Page 1 of 1