Cloud Computing Frameworks and Standards news, help and research

Cloud Computing Frameworks and Standards News

April 12, 2017 12 Apr'17
Symantec CA woes debated by browser community

Compliance with CA/B Forum Baseline Requirements was debated after Symantec CA posted responses to 14 issues raised by Mozilla developers.
October 21, 2016 21 Oct'16
EU-U.S. Privacy Shield certification process picks up steam, slowly

After a slow start, some U.S. companies are starting to address the questions and challenges of EU-U.S. Privacy Shield certification. But most haven't started the process.
February 03, 2016 03 Feb'16
Privacy Shield to replace Safe Harbor framework

The EU and U.S. agree on Privacy Shield as the replacement for the Safe Harbor framework for transatlantic data flows, though questions remain over privacy protection details.
January 28, 2016 28 Jan'16
Industry group says FedRAMP certification process is 'broken'

An advocacy group representing cloud providers such as Hewlett Packard Enterprise and IBM has criticized FedRAMP and called on the government to fix the cloud certification program.

Bring yourself up to speed with our introductory content

cloud security architecture

Cloud security architecture is a security strategy designed around securing an organization's data and applications in the cloud. Continue Reading
Top cloud compliance standards and how to use them

Get guidance on how to select relevant cloud compliance standards, along with tips on evaluating third-party providers' cloud compliance and governance efforts. Continue Reading
cloud computing

Cloud computing is a general term for anything that involves delivering hosted services over the internet. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

How to use CIS benchmarks to improve public cloud security

Safeguarding public cloud environment is a shared responsibility. Cloud customers should use CIS benchmarks to ensure cloud security at the account level. Continue Reading
SASE market emerges and grows as the 'wave of the future'

Secure Access Service Edge is the latest technology to garner industry buzz in networking and security. Although it's still relatively new, the technology is making waves. Continue Reading
How to use the Mitre ATT&CK framework for cloud security

Learn how to use the Mitre ATT&CK security framework to keep your enterprise cloud environment -- whether AWS, GCP, Azure, Azure AD or Microsoft 365 -- secure. Continue Reading

Learn to apply best practices and optimize your operations.

The 8 best cloud security certifications for IT pros in 2021

Certifications can help security pros prove their baseline knowledge of infosec topics. Consider adding these top cloud security certifications to your arsenal. Continue Reading
VMs vs. containers: Which is better for security?

Security professionals make technology decisions every day. Learn about the important security properties of VMs vs. containers and how they affect an organization's security posture. Continue Reading
How shared cloud security assessments can benefit enterprises

Ensuring cloud security is a constant problem that shared cloud security assessments are trying to address. Learn about the benefits of sharing assessments with Nick Lewis. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How to address and mitigate serverless security issues

There are two major security implications of serverless cloud infrastructure: secure coding and identity and access management. Uncover best practices to mitigate these risks. Continue Reading
Shared responsibility model transparency boosts cloud security

The shared responsibility model delineates where company and CSP security responsibilities start and end. This is critical not only for compliance, but also the big security picture. Continue Reading
How enterprises should handle GDPR compliance in the cloud

GDPR compliance in the cloud can be an intimidating concept for some enterprises, but it doesn't have to be. Rob Shapland explains why it's not so different from on premises. Continue Reading