Infrastructure as a Service security 101: Public IaaS security issues

This special presentation is part of's Enterprise Cloud Security School lesson, "Cloud security fundamentals for enterprises" featuring Rich Mogull of Securosis.

Assuming you have a grip on your organization’s security controls, how do you map cloud computing delivery models to those existing controls that protect physical assets, and also keep your organization compliant with regulations. 

This lesson will focus on public IaaS security issues, and more specifically will address a critical overarching concern for security professionals when considering a cloud provider: how to determine whether a cloud provider can enable an enterprise's security strategy.

About the speaker:
Rich Mogull is the founder and analyst of information security research and advisory firm Securosis. He has more than 20 years experience in information security, physical security, and risk management. He specializes in data security, application security, emerging security technologies, and security management. Prior to founding Securosis, Rich was a Research Vice President at Gartner on the security team where he also served as research co-chair for the Gartner Security Summit. Prior to his seven years at Gartner, Rich worked as an independent consultant, Web application developer, software development manager at the University of Colorado, and systems and network administrator.

Editor's note: This presentation was originally recorded in March, 2012.

View All Videos

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.