Access your Pro+ Content below.
Setting standards for better cloud security
There have been significant improvements in basic security capabilities for cloud deployments over the past two years—a good thing, given that 45% of organizations are using Infrastructure as a Service (IaaS). And that’s just one class of cloud use. But while tools are essential, there are governance-focused elements of cloud security, and they need further scrutiny and maturity—primarily accepted frameworks and questions for assessing cloud provider and project risk, and standards for security best practices..
In this Insider Edition, InfoSec Pros will learn about the efforts of national governments—including the FedRAMP in the U.S.—and get the latest insights into what the Cloud Security Association is doing to improve the security of the cloud-computing ecosystem. Much work remains to be done, and security gaps filled, so in the meantime it's essential to learn how to assess the risk inherent in your cloud deployment and apply security controls. In short, this Insider Edition will explain what standards exist for cloud security, what works, what needs some work—and how you can measure, and manage, your security risk in the meantime.
Access this PRO+ Content for Free!
Features in this issue
Better security in the cloud is possible. Learn what national standards and the CSA can do, what they cannot and how to plug the security gap.
FedRAMP raises the bar for security among applicable cloud providers, but can it influence broader cloud computing contracts and standards?
Is the cloud more or less secure than your current environment? How to assess your risk before moving data processing or applications to the cloud.