Home
Topics
Cloud Computing Compliance, Audit and Data Governance
Cloud Computing Frameworks and Standards
Gartner’s Neil MacDonald on lacking cloud computing security standards

Gartner’s Neil MacDonald on lacking cloud computing security standards

Date: Jul 01, 2011

In this interview at the 2011 Gartner Security & Risk Management Summit, Neil MacDonald, Gartner vice president and fellow emeritus, discusses how cloud computing security standards are lacking and why that affects enterprises looking to validate cloud computing security. MacDonald also offers advice for enterprises looking to get an initial handle on security for cloud computing.

More on Cloud Computing Frameworks and Standards

On cloud transparency, providers offering 'too much information'
VIDEO - Video: Cloud Security Alliance COO John Howie discusses improvements in providers' efforts at cloud transparency, including when data crosses borders.
John Howie discusses CSA initiatives, cloud adoption issues at RSA
VIDEO - Video: John Howie, COO of the Cloud Security Alliance, discusses the ongoing initiatives at the CSA and how to overcome cloud adoption issues.
Video: Founder of Common Assurance Maturity Model on CSP rating system
VIDEO - CAMM founder Raj Samani describes CAMM’s vision of a cloud service provider rating system to match customer organizations with CSPs.
Are FedRAMP security controls enough?
Feature - Cloud service providers are working with authorized third-party auditors to meet FedRAMP security controls. The 3PAOs tell us how it’s going, so far.
FedRAMP 3PAO (third-party assessment organization)
Definition - A 3PAO is an organization that has been certified to help cloud service providers and government agencies meet FedRAMP compliance regulations. 3PAO stands for Third Party Assessment Organization.
(ISC)2, CSA partner on new cloud security certification
News - The yet-unnamed certification will seek to validate skills of cloud security pros, but it's unclear how it may complement or overlap with existing certs.
( Apr 26, 2013 )
CSA offers new initiatives to address SMB cloud security issues
News - In response to growing SMB cloud security issues, the Cloud Security Alliance announced a new working group and membership level focused on SMBs.
( Apr 26, 2013 )
Cloud security key to BYOD, (ISC)2 study shows
News - (ISC)2 says businesses welcome bring your own device (BYOD) policies for cost savings and user experience, but need the right security skills
( Jan 16, 2013 )

Back to top

Security
- Users may remain vulnerable despite Oracle Java patch release
  
  Oracle has issued a new security patch for Java, but only 7% deployed the patch before it.
- Gary McGraw: NSA data collection programs demand discussion, scrutiny
  
  Opinion: Gary McGraw details the various and sundry NSA data collection programs and explains why all its efforts demand new discussion and scrutiny.
- Enterprise BYOD offers mixed bag for enterprise endpoint security
  
  A Gartner analyst says enterprise BYOD -- specifically iOS and Android devices -- presents many pros and cons for enterprise endpoint security.
Security Channel
- Websense Partner Program
  
  Learn about bandwidth management vendor Websense's partner program in this standardized checklist.
- Tripwire, Inc. Partner Program
  
  Learn more about configuration control software vendor Tripwire, Inc.'s partner program in this standardized checklist.
- Configuring privilege levels
  
  This section of the chapter excerpt focuses on supporting multiple administrative levels of router configuration.
Security UK
- Infosecurity 2012: IPv6 challenges to network security
  
  In this video interview, Ian Kilpatrick of Wick Hill discusses the IPv6 challenges that small and medium businesses are just beginning to address.
- Apache DDoS vulnerability requires immediate update to avoid threat
  
  Apache has released an updated version of its Web server to address a DDoS vulnerability, for which exploit tools have been found in the wild.
- Learn how to utilize a free spam-filtering service for your SMB
  
  Learn how a Web-based free spam-filtering service can secure email and prevent spam from attacking your enterprise.
Cloud computing
- PaaS market heats up with Red Hat OpenShift, Savvis AppFog buy
  
  PaaS made headlines last week, but it's still difficult to gauge the true level of interest in Platform as a Service in the enterprise world.
- IBM, Salesforce deals usher in cloud consolidation era
  
  IBM's SoftLayer buy is getting mixed reviews from IT pros, but everyone agrees that it's an example of the consolidation phase of the cloud bubble.
- U.S. defense agencies' cloud transition yields better intelligence
  
  A cloud migration seems daunting but the effort is worthwhile; U.S. defense agencies say their cloud move led to better military intelligence.
Server Virtualization
- Virtualization vs. cloud: Let's get this straight
  
  Reports of clouds abound, but true clouds are hard to come by. Turns out, many don't know what separates virtualization vs. cloud. We're here to help.
- Moving VMs around? Avoid downtime with Hyper-V Live Storage Migration
  
  Live Storage Migration eliminates the downtime associated with moving VM files from one storage location to another and helps improve performance.
- RHEV proves to be a cost-effective alternative to vSphere
  
  Some IT departments have turned to low-cost, flexible virtualization platforms, such as Red Hat Enterprise Virtualization, to lower VMware costs.
VMware
- Cloud management tasks that VMware vCAC can and cannot do with vCD
  
  VMware vCloud Director and vCloud Automation Center manage cloud resources together. But depending on your VMware vCAC version, they hardly interact.
- Applying VCDX principles for a better VMware architecture and operations
  
  VCDX certification isn't practical for most VMware admins and architects, but VCDX principles about VMware architecture apply to vSphere operations.
- Analyzing VMware vSphere cost and benefits for a small business
  
  The free VMware vSphere Hypervisor might seem like the perfect virtualization tool for SMB IT. But spending the money for vSphere Essentials pays off.

Latest Headlines

Featured

E-Books

E-Zines

E-Handbooks

Topics

Hot Topics

New Tutorials

Editor's Choice

Tips

Answers

Ask a Question

Research Library

Product Demos

Blogs

Certification Central

Gartner’s Neil MacDonald on lacking cloud computing security standards

Gartner’s Neil MacDonald on lacking cloud computing security standards

More on Cloud Computing Frameworks and Standards

More from Related TechTarget Sites