Get started
Bring yourself up to speed with our introductory content.
Get started
Bring yourself up to speed with our introductory content.
What you need to know for effective zero trust in the cloud
A zero-trust security strategy means something completely different in cloud environments than it does on premises. Learn how to achieve true zero trust in the cloud. Continue Reading
The security implications of serverless cloud computing
Cloudflare Workers is new for serverless cloud computing and introduces benefits and drawbacks for security professionals. Expert Ed Moyle discusses the security side of serverless. Continue Reading
How to build a cloud security strategy after migration
Enterprises can face an array of issues when they migrate to the cloud. Learn about three of the main challenges and how to effectively create a cloud security strategy. Continue Reading
-
software-defined perimeter (SDP)
Software-defined perimeter (SDP) is a security framework developed by the Cloud Security Alliance (CSA) that controls access to resources based on identity. Continue Reading
hypervisor security
Hypervisor security is the process of ensuring the hypervisor, the software that enables virtualization, is secure throughout its life cycle, including during development, implementation, provisioning, management and de-provisioning. Continue Reading
clickwrap agreement (clickthrough agreement)
A clickwrap agreement, also known as a click through, shrink-wrap, or sign-in-wrap, is an online agreement in which the user signifies his or her acceptance by clicking a button or checking a box that states “I agree.”Continue Reading
SSAE 16
The Statement on Standards for Attestation Engagements No. 16 (SSAE 16) is a set of auditing standards and guidance on using the standards, published by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (...Continue Reading
How Google's cloud data deletion process can influence security policies
Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed Moyle explains the process and how to use it.Continue Reading
How to configure a vTAP for cloud networks
A vTAP can give enterprises better visibility into their cloud networks. Expert Frank Siemons of InfoSec Institute explains how virtual network TAPs work and the available options.Continue Reading
CCSP Domain 6: Cloud computing regulations and legal issues
This Security School will help you prepare for Domain 6 of the CCSP exam, "Legal and Compliance," which covers cloud computing regulations, privacy issues and legal requirements.Continue Reading
-
Can you ace this quiz on cloud computing privacy issues?
Consumers and enterprises are increasingly concerned about data privacy -- with good reason -- and cloud computing introduces a host of new challenges. How well do you know them?Continue Reading
How to collect open source threat intelligence in the cloud
Threat intelligence analysis can be challenging and expensive for enterprises. Expert Frank Siemons explains how open source threat intelligence can simplify the process.Continue Reading
CAIQ (Consensus Assessments Initiative Questionnaire)
The Consensus Assessments Initiative Questionnaire (CAIQ) is a survey provided by the Cloud Security Alliance (CSA) for cloud consumers and auditors to assess the security capabilities of a cloud service provider.Continue Reading
CCSP Domain 5: Operations shape secure cloud infrastructure
The complexity of cloud computing requires a new approach to IT operations, and understanding the ins and outs of cloud ops is vital to maintaining secure cloud infrastructure.Continue Reading
How do cloud deployment models affect IT operations?
Security plays a vital role in cloud operations. Test your knowledge of important concepts covered in Domain 5 of the CCSP exam, “Operations,” with this practice quiz.Continue Reading