Cloud Computing Protected: Security Assessment Handbook: Security Assessment Handbook

Cloud Computing Protected describes the most important security challenges that organizations face as they seek to adopt public cloud services and implement their own cloud-based infrastructure. There is no question that these emerging technologies introduce new risks: Virtualization hinders monitoring and can lead to server sprawl. Multi-tenancy exposes risks of data leakage to co-tenants. Outsourcing reduces both control and visibility over services and data. Internet service delivery increases the exposure of valuable information assets. Ambiguity in jurisdiction and national regulations complicates regulatory compliance. Lack of standardization can lead to a lock-in binding customers to their providers. Fortunately, there are also many security benefits that customers can enjoy as they implement cloud services: Highly specialized providers have the economy of scale to invest in best-in-class tools and expertise. Contractual terms can clearly define the function and scope of critical services. Public services receive unprecedented scrutiny from the collective worldwide community. It is possible to achieve unlimited levels of redundancy by subscribing to multiple providers. The global reach of the Internet and security specialists facilitates early alerts and drives consistent policy enforcement. This book looks at these and other areas where the advent of cloud computing has the opportunity to influence security risks, safeguards and processes.