Security In The Cloud – Maintaining A Secure Environment

Security In The Cloud – Maintaining A Secure Environment

One of the most prevalent points brought up by skeptics of cloud computing is the integrity of the security for said systems. Different reservations are held against different models of cloud computing, in particular for public clouds. The mere fact that public clouds host environments for multiple organizations and further supply the ability to accommodate multiple tenants for each group give the perception that information stored on such system may be accessible to anyone.

The effectiveness of the security of a cloud system relies on several different factors. First and foremost, the infrastructure upon which it is built will reflect the overall security capabilities of the system. The platform, or operating system, that exists on top of the underlying hardware will be used to restrict access to records and other services that regulate the operation of the system. This will correlate to the efficacy of stopping potentially the likes of malicious administrators, as well as other users that have legitimate access to the system who may intend to harm a business digitally. For example, file auditing, a feature that has been readily available since the inception of Windows Server 2003, is a great resource both as preventative security measure, like a visible security camera, and as a tool for review, should something go awry.

Mostly, the security of the system is the responsibility of the end user. This is where a few key concepts come into play. Educating staff is the most effective way to ensure that guidelines are followed; hence instilling secure for a cloud environment.

The following are some of the most important aspects to creating and maintaining a secure environment.

  • Be smart with credentials. When creating an account with just about any web service, you are generally required to create a strong password. This means the password should be at least eight characters long, and contain a combination of upper case letters, lower case letters, numbers, and special characters. The password(s) used should also be completely unique. This will inhibit anyone from guessing the password and prevent password generating software from easily gaining access.
  • Regularly back up data. Data back-up procedures should not be put to the wayside, even if the infrastructure of the cloud is fully redundant. There are still times where even the most seasoned IT professional will encounter a problem that leaves him shaking his head in confusion. Furthermore, accidents can happen. A back up of information from the system to another location will help prevent catastrophe should some mishap on a “perfect” system wipe out critical data.
  • Keep up with workstations and mobile devices. More than likely, a hacker is going to take the path of least resistance. To gain access to a system, it is a lot easier to extract information from an auxiliary component of the network, rather than directly attacking the network’s infrastructure. Workstations, especially Windows, should always be updated with current security patches. Antivirus and firewalls are important to help prevent malevolent applications from accessing residual information on the computer that could allow for entry. Moreover, networking hardware, such as Bluetooth, should remain disabled. The fewer conduits for someone to attack means it is less likely to happen.

By Deney Dentel

Deney serves as CEO for Nordisk Systems, Inc. Nordisk Systems expertized in various IT services by providing the best solutions for you businesses on  cloud compuing, virtualization, backup and recovery, and managed services.

About CloudTweaks

Established in 2009, CloudTweaks is recognized as one of the leading authorities in connected technology information and services.

We embrace and instill thought leadership insights, relevant and timely news related stories, unbiased benchmark reporting as well as offer green/cleantech learning and consultive services around the world.

Our vision is to create awareness and to help find innovative ways to connect our planet in a positive eco-friendly manner.

In the meantime, you may connect with CloudTweaks by following and sharing our resources.

View All Articles

Sorry, comments are closed for this post.

Comics
Are Cloud Solutions Secure Enough Out-of-the-box?

Are Cloud Solutions Secure Enough Out-of-the-box?

Out-of-the-box Cloud Solutions Although people may argue that data is not safe in the Cloud because using cloud infrastructure requires trusting another party to look after mission critical data, cloud services actually are more secure than legacy systems. In fact, a recent study on the state of cloud security in the enterprise market revealed that…

Cyber Security: McAfee on IoT Threats and Autonomous Cars

Cyber Security: McAfee on IoT Threats and Autonomous Cars

IoT Threats and Autonomous Cars Autonomous cars are just around the corner, there have been controversies surrounding their safety, and a few doubts still hang in the minds of people who don’t like the idea of a computer driving their car. However, the biggest news stories surrounding this topic have been to do with how…

Is Machine Learning Making Your Data Scientists Obsolete?

Is Machine Learning Making Your Data Scientists Obsolete?

Machine Learning and Data Scientists In a recent study, almost all the businesses surveyed stated that big data analytics were fundamental to their business strategies. Although the field of computer and information research scientists is growing faster than any other occupation, the increasing applicability of data science across business sectors is leading to an exponential…

5% Of Companies Have Embraced The Digital Innovation Fostered By Cloud Computing

5% Of Companies Have Embraced The Digital Innovation Fostered By Cloud Computing

Embracing The Cloud We love the stories of big complacent industry leaders having their positions sledge hammered by nimble cloud-based competitors. Saleforce.com chews up Oracle’s CRM business. Airbnb has a bigger market cap than Marriott. Amazon crushes Walmart (and pretty much every other retailer). We say: “How could they have not seen this coming?” But, more…

What the Dyn DDoS Attacks Taught Us About Cloud-Only EFSS

What the Dyn DDoS Attacks Taught Us About Cloud-Only EFSS

DDoS Attacks October 21st, 2016 went into the annals of Internet history for the large scale Distributed Denial of Service (DDoS) attacks that made popular Internet properties like Twitter, SoundCloud, Spotify and Box inaccessible to many users in the US. The DDoS attack happened in three waves targeting DNS service provider Dyn, resulting in a total of about…

The Fully Aware, Hybrid-Cloud Approach

The Fully Aware, Hybrid-Cloud Approach

Hybrid-Cloud Approach For over 20 years, organizations have been attempting to secure their networks and protect their data. However, have any of their efforts really improved security? Today we hear journalists and industry experts talk about the erosion of the perimeter. Some say it’s squishy, others say it’s spongy, and yet another claims it crunchy.…

Your Biggest Data Security Threat Could Be….

Your Biggest Data Security Threat Could Be….

Paying Attention To Data Security Your biggest data security threat could be sitting next to you… Data security is a big concern for businesses. The repercussions of a data security breach ranges from embarrassment, to costly lawsuits and clean-up jobs – particularly when confidential client information is involved. But although more and more businesses are…

Three Tips To Simplify Governance, Risk and Compliance

Three Tips To Simplify Governance, Risk and Compliance

Governance, Risk and Compliance Businesses are under pressure to deliver against a backdrop of evolving regulations and security threats. In the face of such challenges they strive to perform better, be leaner, cut costs and be more efficient. Effective governance, risk and compliance (GRC) can help preserve the business’ corporate integrity and protect the brand,…