Rating: 0 out of 5 stars
0 ratings
Ebook56 pages41 minutes
Cloud Security and Governance: Who's on your cloud?
By Sumner Blount and Rob Zanella
Rating: 1 out of 5 stars
1/5
()
About this ebook
Increasingly worried about security and compliance in the Cloud?
The rise of Cloud Computing, with services delivered “in the cloud”, offers businesses incredible power and flexibility. It promises the efficient use of human and financial capital resources, reducing infrastructure and operation costs. It proposes a model of computing that is effective at meeting the demands of business in a rapidly changing environment.
Security and Compliance IssuesOne of the most difficult challenges related to Cloud Computing, revolves around the security and compliance issues associated with it. This is a major concern and will continue to be so, with the ever increasing onslaught of regulations impacting security controls.
This pocket guide explains and highlights some of the key security and compliance issues surrounding Cloud adoption, and provides helpful insight into how they can be addressed.
Author
Sumner Blount
Sumner Blount has been associated with the development and marketing of software products for over 25 years. He has managed the large computer operating system development group at Digital Equipment and Prime Computer, and was Director of Software for Pathway Designs. He later was instrumental in the original conception and development of the DCE (Distributed Computing Environment) technology from the Open Software Foundation, and served as the DCE Program Manager within Digital. He also was the Chairman of the DCE Special Interest Group for five years. More recently, he has held a number of Product Management positions, including management of the Distributed Computing Product Management group at Digital and Senior Product Manager at Netegrity. He came to CA Technologies in 2004, where he has served in the Security and the GRC product marketing groups. He currently is the Director of Security Solutions and focuses primarily on compliance issues. He is the author of several industry journal articles, and has spoken at a number of industry conferences.
Related to Cloud Security and Governance
Related ebooks
Modern Cybersecurity Strategies for Enterprises: Protect and Secure Your Enterprise Networks, Digital Business Assets, and Endpoint Security with Tested and Proven Methods (English Edition) Securing Cloud Services - A pragmatic guide: Second edition Rating: 0 out of 5 stars0 ratingsBuilding Effective Cybersecurity Programs: A Security Manager’s Handbook Rating: 4 out of 5 stars4/5Security Engineering: CISSP, #3 Rating: 0 out of 5 stars0 ratingsCloud Computing: Assessing the risks Rating: 0 out of 5 stars0 ratingsModern Cybersecurity Practices: Exploring And Implementing Agile Cybersecurity Frameworks and Strategies for Your Organization Rating: 0 out of 5 stars0 ratingsThe Official (ISC)2 CCSP CBK Reference Rating: 0 out of 5 stars0 ratingsMicrosoft Azure Security Rating: 0 out of 5 stars0 ratingsMulti-Cloud Administration Guide: Manage and optimize cloud resources across Azure, AWS, GCP, and Alibaba Cloud (English Edition) Rating: 0 out of 5 stars0 ratingsSecuring Cloud Services: A pragmatic approach to security architecture in the Cloud Rating: 0 out of 5 stars0 ratingsCyber Essentials: A guide to the Cyber Essentials and Cyber Essentials Plus certifications Rating: 0 out of 5 stars0 ratingsHow Cyber Security Can Protect Your Business: A guide for all stakeholders Rating: 0 out of 5 stars0 ratingsThe Cyber Security Handbook – Prepare for, respond to and recover from cyber attacks Rating: 0 out of 5 stars0 ratingsFight Fire with Fire: Proactive Cybersecurity Strategies for Today's Leaders Rating: 0 out of 5 stars0 ratingsBuilding an Effective Cybersecurity Program, 2nd Edition Rating: 0 out of 5 stars0 ratingsSecure Your Business: Insights to Governance, Risk, Compliance & Information Security Rating: 0 out of 5 stars0 ratingsStart-Up Secure: Baking Cybersecurity into Your Company from Founding to Exit Rating: 0 out of 5 stars0 ratingsA Practitioner's Guide to Adapting the NIST Cybersecurity Framework Rating: 0 out of 5 stars0 ratingsWeb Application Security is a Stack: How to CYA (Cover Your Apps) Completely Rating: 0 out of 5 stars0 ratingsCyber Essentials: A Pocket Guide Rating: 5 out of 5 stars5/5Architecting the Cloud: Design Decisions for Cloud Computing Service Models (SaaS, PaaS, and IaaS) Rating: 5 out of 5 stars5/5CISSP Exam Study Guide: NIST Framework, Digital Forensics & Cybersecurity Governance Rating: 5 out of 5 stars5/5Fundamentals of Adopting the NIST Cybersecurity Framework Rating: 0 out of 5 stars0 ratings(ISC)2 CCSP Certified Cloud Security Professional Official Practice Tests Rating: 0 out of 5 stars0 ratingsGDPR for DevOp(Sec) - The laws, Controls and solutions Rating: 5 out of 5 stars5/5Cybersecurity Design Principles: Building Secure Resilient Architecture Rating: 0 out of 5 stars0 ratingsCyber Security Consultants Playbook Rating: 0 out of 5 stars0 ratingsInformation Security Risk Complete Self-Assessment Guide Rating: 0 out of 5 stars0 ratings
Security For You
Social Engineering: The Science of Human Hacking Rating: 3 out of 5 stars3/5CISM Certified Information Security Manager Study Guide Rating: 0 out of 5 stars0 ratingsMake Your Smartphone 007 Smart Rating: 4 out of 5 stars4/5How to Become Anonymous, Secure and Free Online Rating: 5 out of 5 stars5/5CompTIA Network+ Review Guide: Exam N10-008 Rating: 0 out of 5 stars0 ratingsThe Hacker Crackdown: Law and Disorder on the Electronic Frontier Rating: 4 out of 5 stars4/5Hacking For Dummies Rating: 4 out of 5 stars4/5CompTIA Security+ Study Guide: Exam SY0-601 Rating: 5 out of 5 stars5/5Cybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity Rating: 5 out of 5 stars5/5Cybersecurity For Dummies Rating: 5 out of 5 stars5/5IAPP CIPP / US Certified Information Privacy Professional Study Guide Rating: 0 out of 5 stars0 ratingsCybersecurity All-in-One For Dummies Rating: 0 out of 5 stars0 ratingsThe Cyber Attack Survival Manual: Tools for Surviving Everything from Identity Theft to the Digital Apocalypse Rating: 0 out of 5 stars0 ratingsWireless Hacking 101 Rating: 5 out of 5 stars5/5The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers Rating: 4 out of 5 stars4/5Tor and the Dark Art of Anonymity Rating: 5 out of 5 stars5/5Dark Territory: The Secret History of Cyber War Rating: 4 out of 5 stars4/5CompTIA CySA+ Study Guide: Exam CS0-003 Rating: 2 out of 5 stars2/5CompTIA Network+ Practice Tests: Exam N10-008 Rating: 0 out of 5 stars0 ratingsRemote/WebCam Notarization : Basic Understanding Rating: 3 out of 5 stars3/5CompTIA Security+ Study Guide with over 500 Practice Test Questions: Exam SY0-701 Rating: 0 out of 5 stars0 ratingsBlockchain Basics: A Non-Technical Introduction in 25 Steps Rating: 4 out of 5 stars4/5Wireless and Mobile Hacking and Sniffing Techniques Rating: 0 out of 5 stars0 ratingsCodes and Ciphers - A History of Cryptography Rating: 4 out of 5 stars4/5Codes and Ciphers Rating: 5 out of 5 stars5/5
Related podcast episodes
Is enhanced hardware security the answer to ransomware? [CyberWire-X] 100% found this document usefulBig breaches (and how to avoid them): with Neil Daswani 0% found this document usefulcybersecurity maturity model certification (CMMC) (noun) [Word Notes] 0% found this document usefulCybersecurity Trends and Practices 0% found this document usefulHow I Passed The CIPP/E Exam In 7 Days (And You Can Too!) 0% found this document usefulCyberWire Pro Interview Selects: Jaclyn Miller from NTT, Ltd. 0% found this document usefulStorytelling and Cybersecurity Awareness 0% found this document useful#21 - Domain-Driven Design and Event-Driven Architecture - Vaughn Vernon 0% found this document usefulStudy Guide for SC-200: Microsoft Security Opertions Analyst 100% found this document useful3 Must Have Skills To Land Your First Privacy Job 0% found this document usefulThe CISO Transformation 0% found this document usefulEpisode 31: Challenging the Privacy narrative 0% found this document usefulSecurity Trends in 2023 and Beyond 0% found this document usefulThe Foolproof Way To Pass The CIPPE Exam In 2 Weeks 0% found this document useful
Related articles
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster” PC Pro MagazineUNLIMITED
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster”
Apr 10, 2022
6 min readWhat Should You Know About Cloud Security Solutions? HWM SingaporeUNLIMITED
What Should You Know About Cloud Security Solutions?
Apr 9, 2021
3 min readWhy Leaders Need To Take A Risk-based Approach To Data Security NZBusiness and ManagementUNLIMITED
Why Leaders Need To Take A Risk-based Approach To Data Security
Jul 21, 2021
5 min readPrivacy: The Price Of Trust Inc.UNLIMITED
Privacy: The Price Of Trust
Aug 17, 2021
How will cybersecurity and data privacy evolve over the next decade? We’re hearing from our customers that cybersecurity and data privacy are increasingly becoming board-level conversations. Companies will start to think about privacy, security, vend
1 min read2029 VISION Where Technology Is Taking Business NZBusiness and ManagementUNLIMITED
2029 VISION Where Technology Is Taking Business
May 27, 2019
6 min readBusiness In The Cloud Business TodayUNLIMITED
Business In The Cloud
Oct 1, 2020
7 min read4 Ways To Protect Your Small Business From Cyberattacks TechLife NewsUNLIMITED
4 Ways To Protect Your Small Business From Cyberattacks
May 14, 2022
3 min readThe Weakest Link Facility ManagementUNLIMITED
The Weakest Link
Jun 24, 2018
7 min readCybersecurity Firm Fireeye Says Was Hacked By Nation State TechLife NewsUNLIMITED
Cybersecurity Firm Fireeye Says Was Hacked By Nation State
Dec 12, 2020
3 min readAWS Vs Azure What’s The Difference? PC Pro MagazineUNLIMITED
AWS Vs Azure What’s The Difference?
Sep 11, 2022
7 min readArtificial Intelligence: The Next Step for Cybersecurity Cannabis & Tech TodayUNLIMITED
Artificial Intelligence: The Next Step for Cybersecurity
Apr 1, 2019
3 min readCyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL Inc.UNLIMITED
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Sep 21, 2016
Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate
2 min readIoT SECURITY: ARE WE READY FOR A QUANTUM WORLD? The European Business ReviewUNLIMITED
IoT SECURITY: ARE WE READY FOR A QUANTUM WORLD?
Sep 30, 2020
4 min readSoyou’ve Been Breached. Whatnow? PC Pro MagazineUNLIMITED
Soyou’ve Been Breached. Whatnow?
Feb 10, 2022
7 min readCybersecurity: It Might Be The Small Stuff That Gets You NZBusiness and ManagementUNLIMITED
Cybersecurity: It Might Be The Small Stuff That Gets You
Jan 16, 2020
2 min readCreating a Cybersecurity Checklist Residential Tech TodayUNLIMITED
Creating a Cybersecurity Checklist
Aug 25, 2021
Cybersecurity technology has experienced a tremendous surge in consumer interest in 2021 that has shown no signs of slowing down. The trend is largely because developers are introducing numerous innovations in this realm, at a pace that meets market
4 min readNetwork monitoring 2022 PC Pro MagazineUNLIMITED
Network monitoring 2022
Feb 10, 2022
4 min readPhonePe: Life Beyond UPI Business TodayUNLIMITED
PhonePe: Life Beyond UPI
Dec 10, 2020
5 min readStaying Safe In The Cloud NZBusiness and ManagementUNLIMITED
Staying Safe In The Cloud
Jul 22, 2019
4 min readBUILDING THE SMARTER FUTURE OF BANKING & FINANCIAL SERVICES The European Business ReviewUNLIMITED
BUILDING THE SMARTER FUTURE OF BANKING & FINANCIAL SERVICES
Nov 25, 2021
4 min readUnderstand And Deploy Security Keys Linux FormatUNLIMITED
Understand And Deploy Security Keys
Feb 8, 2022
9 min readHow to Protect Your Small Business Against a Cyber Attack EntrepreneurUNLIMITED
How to Protect Your Small Business Against a Cyber Attack
Feb 1, 2013
8 min readTop Eight Cybersecurity Predictions For 2022-23 NZBusiness and ManagementUNLIMITED
Top Eight Cybersecurity Predictions For 2022-23
Jul 20, 2022
3 min readProtect Your Data APCUNLIMITED
Protect Your Data
Jul 13, 2020
13 min readAMD’s Ryzen 7000 And RDNA 3 Chips Are Set To Stun Later This Year Tech AdvisorUNLIMITED
AMD’s Ryzen 7000 And RDNA 3 Chips Are Set To Stun Later This Year
Jul 6, 2022
2 min readVeritas Backup Exec 22 PC Pro MagazineUNLIMITED
Veritas Backup Exec 22
Oct 8, 2022
2 min readUnder Cyber Attack Owner DriverUNLIMITED
Under Cyber Attack
Apr 16, 2020
9 min readReal World Computing PC Pro MagazineUNLIMITED
Real World Computing
May 11, 2023
Migrating to Azure isn’t necessarily the toughest part of a successful cloud migration, explains our guest columnist Many organisations succeed at deploying resources in or migrating to Microsoft Azure. But many of those same organisations fail to en
6 min readEverything You Should Know About Cybersecurity Automation TechfastlyUNLIMITED
Everything You Should Know About Cybersecurity Automation
Jun 1, 2021
6 min readWeb App Security Linux FormatUNLIMITED
Web App Security
Jun 29, 2021
8 min read
Reviews for Cloud Security and Governance
Rating: 1 out of 5 stars
1/5
1 rating0 reviews
Book preview
Cloud Security and Governance - Sumner Blount
Cloud Security and Governance
Who’s on your Cloud?
Cloud Security
and Governance
Who’s on your Cloud?
SUMNER BLOUNT
ROB ZANELLA
Every possible effort has been made to ensure that the information contained in this book is accurate at the time of going to press, and the publisher and the author cannot accept responsibility for any errors or omissions, however caused. No responsibility for loss or damage occasioned to any person acting, or refraining from action, as a result of the material in this publication can be accepted by the publisher or the author.
Apart from any fair dealing for the purposes of research or private study, or criticism or review, as permitted under the Copyright, Designs and Patents Act 1988, this publication may only be reproduced, stored or transmitted, in any form, or by any means, with the prior permission in writing of the publisher or, in the case of reprographic reproduction, in accordance with the terms of licences issued by the Copyright Licensing Agency. Enquiries concerning reproduction outside those terms should be sent to the publisher at the following address:
IT Governance Publishing
IT Governance Limited
Unit 3, Clive Court
Bartholomew’s Walk
Cambridgeshire Business Park
Ely
Cambridgeshire
CB7 4EH
United Kingdom
www.itgovernance.co.uk
© Sumner Blount and Rob Zanella 2010
The authors have asserted the rights of the author under the Copyright, Designs and Patents Act, 1988, to be identified as the authors of this work.
First published in the United Kingdom in 2010 by IT Governance Publishing.
ISBN 978-1-84928-098-3
FOREWORD
Shifting paradigms introduce a period of fear, uncertainty and doubt.
Organizations – as well as individual roles within the organization – find comfort in the old way of doing things, but are challenged to be innovative and leverage new approaches that bring agility, efficiency and effectiveness to enterprise operations. Cloud Computing is one of those paradigm shifts that is showing the power to completely revolutionize how technology delivers value to the business. It is aimed at the rapid provisioning and agility that business demands in its complex, dynamic and distributed business environment. It promises the efficient use of human and financial capital resources, reducing infrastructure and operation costs. It proposes a model of computing that is effective at meeting the requirements and demands of business in an environment that is changing rapidly.
However, the paradigm shift to Cloud Computing has introduced a major concern: security. How does business take advantage of the wealth of benefits that Cloud Computing promises while avoiding the compromise of confidentiality, integrity and availability of critical business information and processes? Many security officers and managers have dragged their feet and fought tooth and nail against this new paradigm in fear of security compromise. With an onslaught of regulations impacting security controls, this concern has continued to grow.
Just as an organization can have a secure infrastructure or an insecure infrastructure, the same is true of
Enjoying the preview?
Page 1 of 1