Cloud Compliance: Federal Regulations and Industry Regulations

Cloud Compliance: Federal Regulations and Industry Regulations News

May 29, 2019 29 May'19
Human rights advocate talks GDPR, AI and data privacy laws

Human rights advocate Bjørn Stormorken talks about the importance of data privacy laws, and why stronger laws and more data literacy are necessary today.
May 11, 2017 11 May'17
Druva cloud expands to help Brexit, GDPR reg challenges

Organizations have a 'heightened awareness' about increasingly prevalent data protection regulations, and Druva's three new cloud locations aim to aid compliance.
April 13, 2017 13 Apr'17
U.S. election hacking not an act of cyberwarfare, experts say

The government needs a better definition for an act of cyberwarfare, says ex-CIA Director Michael Hayden, because he doesn't think the U.S. election hacking applies.
October 21, 2016 21 Oct'16
EU-U.S. Privacy Shield certification process picks up steam, slowly

After a slow start, some U.S. companies are starting to address the questions and challenges of EU-U.S. Privacy Shield certification. But most haven't started the process.

Bring yourself up to speed with our introductory content

Understanding the CSA Cloud Controls Matrix and CSA CAIQ

Uncover how the CSA Cloud Controls Matrix and CSA CAIQ can be used to assess cloud providers' controls and risk models, ensure cloud compliance and more. Continue Reading
SSAE 16

The Statement on Standards for Attestation Engagements No. 16 (SSAE 16) is a set of auditing standards and guidance on using the standards, published by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (... Continue Reading
CCSP Domain 6: Cloud computing regulations and legal issues

This Security School will help you prepare for Domain 6 of the CCSP exam, "Legal and Compliance," which covers cloud computing regulations, privacy issues and legal requirements. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

How security teams benefit from traffic mirroring in the cloud

Enterprises with the resources to deploy traffic mirroring are gaining security benefits. Frank Siemons explains how traffic mirroring has adapted to new and evolving cyber-risks. Continue Reading
What are the best criteria to use to evaluate cloud service providers?

Many cloud providers are tight-lipped about internal security control details. Learn how to evaluate cloud security providers with certifications and third-party assessments. Continue Reading
How do SLAs factor into cloud risk management?

While you may not have much control over the infrastructure used by cloud service providers, you’re not completely at their mercy when it comes to cloud risk management. Continue Reading

Learn to apply best practices and optimize your operations.

To get secure cloud storage in healthcare, gauge risks first

Conducting a risk assessment before moving to the cloud and establishing security controls when you get there are key steps toward achieving cloud security, experts say. Continue Reading
DoD cloud security guidelines: What can enterprises learn?

Expert Dan Sullivan explains key takeaways from the Department of Defense's cloud security guidelines that enterprises can put into practice. Continue Reading
Collaboration with Cloud Computing

In this excerpt of Collaboration with Cloud Computing, author Ric Messier outlines how enterprises can evaluate risk management in the cloud. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How enterprises should handle GDPR compliance in the cloud

GDPR compliance in the cloud can be an intimidating concept for some enterprises, but it doesn't have to be. Rob Shapland explains why it's not so different from on premises. Continue Reading
Which cloud security certifications should providers have?

With numerous security standards and certifications available, evaluating a cloud provider can be tricky. Expert Dan Sullivan explains what to look for during evaluation. Continue Reading
The Third Network: What are the security risks for Ethernet as a service?

Ethernet as a service, or the Third Network, aims to deliver faster services to users across carriers and providers, but what are the risks? Network security expert Kevin Beaver explains. Continue Reading