SearchCloudSecurity
New & Notable
News
First big Kubernetes security vulnerability discovered
News roundup: A critical Kubernetes vulnerability was found in the system's API server and could have a wide reach. Plus, ESET found 21 new Linux malware families, and more.
Evaluate
A look at Google's confidential computing framework
The Google Asylo framework is an open source alternative for confidential computing. Expert Rob Shapland explains how it works and how it's different from other offerings.
Evaluate
Possible disposable sandboxes rival virtualization
Microsoft's secretive, potential new feature InPrivate Desktop could give security teams access to disposable sandboxes. Expert Ed Moyle explains how the feature could work.
Get Started
Why the Google data deletion process matters
Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed Moyle explains the process and how to use it.
Trending Topics
-
Private and Hybrid Clouds
CCSP Practice Exam and Study Guides
Studying for, obtaining and maintaining your CCSP® certification has now become more convenient with SearchCloudSecurity.com.
-
Public Clouds Evaluate
New GCP tools look to improve cloud security
Google cloud security has been bolstered by new GCP tools and capabilities. Learn more about Google's improved cloud security features from expert Dave Shackleford.
-
Data Protection Get Started
Why the Google data deletion process matters
Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed Moyle explains the process and how to use it.
-
Standards Evaluate
A look at Google's confidential computing framework
The Google Asylo framework is an open source alternative for confidential computing. Expert Rob Shapland explains how it works and how it's different from other offerings.
-
Virtualization Evaluate
Possible disposable sandboxes rival virtualization
Microsoft's secretive, potential new feature InPrivate Desktop could give security teams access to disposable sandboxes. Expert Ed Moyle explains how the feature could work.
-
IAM Evaluate
A look at anonymity in the cloud with browsers
Cloud browsers can provide a level of security for users seeking anonymity in the cloud. Expert Frank Siemons of the Infosec Institute explains the benefits of cloud browsers.
Topics Covered
-
Cloud Computing Compliance, Audit and Data Governance (6) +
Cloud Computing Virtualization: Secure Multitenancy - Hypervisor Protection
-
Cloud Security Management and Cloud Operations Security (6) +
- Cloud Data Storage, Encryption and Data Protection Best Practices
- Cloud Network Security Trends and Tactics
- Cloud Patch Management and Cloud Configuration Management
- Cloud Provisioning and Cloud Identity Management Issues
- Cloud Security Services: Cloud-Based Vulnerability Scanning and Antivirus
- Legacy Application Modernization for the Cloud
-
Security in the Cloud: Cloud Computing Architecture (5) +
Have a question for an expert?
Please add a title for your question
Get answers from your peers on your most technical Cloud Security challenges.
Meet all of our Cloud Security experts
View all Cloud Security questions and answers
-
Dave Shackleford asks:
How can enterprises improve remote access security to avoid the abuse of Docker?
-
asks:
Are you concerned about the Kubernetes security vulnerability? Why or why not?
-
Rob Shapland asks:
Does your organization use confidential computing tools or services? Why or why not?
Find Solutions For Your Project
-
Evaluate
How Docker APIs are abused for cryptojacking
Remote access puts Docker APIs in a vulnerable position. Expert Dave Shackleford explains how hackers abuse Docker APIs to carry out cryptojacking attacks.
-
A look at Google's confidential computing framework
-
How Microsoft Authenticator integrates with Azure AD
-
Possible disposable sandboxes rival virtualization
-
-
Problem Solve
Monitoring and detecting cloud API vulnerabilities
A REST API vulnerability in Salesforce's Marketing Cloud service put users at risk of data disclosure. Learn how to detect cloud API vulnerabilities from expert Rob Shapland.
-
How cloud attacks use cryptomining software
-
How is GDPR cloud compliance different than on premises?
-
SQL injection protection methods in the cloud
-
-
Manage
How to use Trailblazer to prevent AWS security threats
A security researcher introduced a tool called Trailblazer, which aims to simplify monitoring AWS credentials. Expert Dave Shackleford explains how it can bolster cloud security.
-
The threat of new speculative execution attacks
-
How Azure AD Password Protection secures credentials
-
How to protect container orchestration systems
-
Cloud Security Basics
-
Get Started
SSAE 16
The Statement on Standards for Attestation Engagements No. 16 (SSAE 16) is a set of auditing standards and guidance on using the standards, published by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (...
-
Get Started
Why the Google data deletion process matters
Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed Moyle explains the process and how to use it.
-
Get Started
How to set up a virtual network TAP in the cloud
A vTAP can give enterprises better visibility into their cloud networks. Expert Frank Siemons of InfoSec Institute explains how virtual network TAPs work and the available options.
Vendor Resources
- Top 10 Cloud Security Challenges –White Paper
- Cloud Security: Combat Threats to Your SaaS-Powered Business –White Paper
- The Three Critical Elements of Effective Security of AWS –Resource
Multimedia
-
News
View All -
Cloud Patch Management and Cloud Configuration Management
First big Kubernetes security vulnerability discovered
News roundup: A critical Kubernetes vulnerability was found in the system's API server and could have a wide reach. Plus, ESET found 21 new Linux malware families, and more.
-
Cloud Computing Compliance, Audit and Data Governance
Palo Alto bolsters cloud with security startup RedLock
Palo Alto Networks looks to bolster its cloud security portfolio with a $173 million acquisition of cloud security startup RedLock and integrate it with Evident.io technologies.
-
Cloud Provisioning and Cloud Identity Management Issues
Netflix shares new approach for monitoring credentials in AWS
At Black Hat 2018, a Netflix security engineer introduced a new open source tool designed to more effectively monitor AWS credentials in large cloud environments, like Netflix's.
SearchCloudSecurity Definitions
- SSAE 16
- software-defined perimeter (SDP)
- CAIQ (Consensus Assessments Initiative Questionnaire)
- virtual firewall
- Cloud Security Alliance (CSA)
- Google Cloud Key Management Service (KMS)
- AWS CloudTrail
- cloud access security broker (CASB)