In a recent Ponemon Institute report, over 60% of surveyed US and European cloud service providers said they were unsure if their cloud applications were sufficiently secured.
Is security of cloud services responsibility of customers or providers?
1. Educate Users must understand the risks and responsibilities, and follow a set of best practices that they understand and respect. Creating a risk-aware culture is crucial for security — and nowhere is this more important than in cloud computing.
2. Protect the data Know the user of data and give access only to required person.
3. Maintain a secure environment Apply all security patches for all devices to avoid risk of malware infection and data leakage
4. Never stop testing The computing tools and environment must be tested both prior to deployment, and afterwards. Vulnerabilities tend to open up over time, which is why validation and assessment is vital. This should include testing to confirm that default passwords are not used.
5. Verify the vendor Check whether your cloud vendor understand and comply with your business needs and requirements, including security requirements? You should check the separation policy in case you decide yo part away.
6. Enforce governance You should be able to carry out regular audits of its data and generate compliance reports as if the data were housed on site. 7. Consider the country You’re investing not just in the cloud provider, but in a country. So know the country law regarding ownership of data, political unrest and electrical condition.
7. Consider the country
You’re investing not just in the cloud provider, but in a country. So know the country law regarding ownership of data, political unrest and electrical condition.
7 Must To Know Security Essentials For Cloud Computing
1. Educate Users must understand the risks and responsibilities, and follow a set of best practices that they understand and respect. Creating a risk-aware culture is crucial for security — and nowhere is this more important than in cloud computing.
2. Protect the data Know the user of data and give access only to required person.
3. Maintain a secure environment Apply all security patches for all devices to avoid risk of malware infection and data leakage
4. Never stop testing The computing tools and environment must be tested both prior to deployment, and afterwards. Vulnerabilities tend to open up over time, which is why validation and assessment is vital. This should include testing to confirm that default passwords are not used.
5. Verify the vendor Check whether your cloud vendor understand and comply with your business needs and requirements, including security requirements? You should check the separation policy in case you decide yo part away.
6. Enforce governance You should be able to carry out regular audits of its data and generate compliance reports as if the data were housed on site. 7. Consider the country You’re investing not just in the cloud provider, but in a country. So know the country law regarding ownership of data, political unrest and electrical condition.
7. Consider the country
You’re investing not just in the cloud provider, but in a country. So know the country law regarding ownership of data, political unrest and electrical condition.
No comments:
Post a Comment