Tips To Lessen Cloud Security Fears

Tips To Lessen Cloud Security Fears

Simply because cloud computing is relatively new, it is still plagued with unfounded fears and doubts, the most prevalent of which is that of security. The truth is that it is just as safe as traditional networking technology, and sadly carries most of its vulnerabilities as well. But this just proves that it can be trusted in terms of security just as much as any technology we are using now. Granting, cloud computing is for the most part, just a new way of applying current technology.

To foster its adaption, we the proponents of cloud computing should try and convince the rest of the industry of its merits and dispel all the myths surrounding it. Let us start with the most prevalent hindrance to its adaption, security. So here are some tips in order to heighten our sense of security for cloud computing in general.

Choose wisely which applications are placed on the public cloud. The public cloud is the most convenient place for running our applications and placing our data because generally we are “hands off” when it comes to the maintenance, security, and general integrity of the aforementioned items. These are all taken care of by the service provider. But this in itself is kind of a security risk, having multiple individuals from a third party have access to your applications and data. We could never be sure about those persons because we would have no hand in hiring them and no idea of their backgrounds. So the best way for companies to do is plan ahead which mission critical applications and data go into the public cloud and which ones should be retained internally or invested into a more secure and hands on private cloud. Simpler things like websites, testing applications, product catalogs and specifications would probably be safe with the default cloud security being provided. Applications and data which are more sensitive or classified should be kept close at hand.

Evaluate the required layers of security. We are a paranoid bunch of creatures and often feel safer when there are layers upon layers of something to protect us. For example two locks make you feel safer than just one, a belt ensures you that your pants will not fall even if they already are a perfect fit, and we of course would feel safer in a tank rather than in a glass house when guns are involved.

This goes the same for our sensitive data. Always make sure that there are other security measures in place just in case one of them happens to fail, but you must also make certain that this kind of data or application also requires extra security and, hence justifying the extra cost. Authentication layers would greatly help in this regard. This is important because some types of application and data might simply not be worth enough for anyone to try and steal them, so they also require little security.

Find the perfect third party security auditing services. We simply can’t take anyone’s word for anything especially is security is involved. Though it could be true that your service provider is a real security expert, it often helps to increase our peace of mind knowing that another supposedly expert party is reinforcing this fact. In short get the opinions of other security experts by having them periodically audit your service.

Security should be front and center in your SLA. When drafting the service level agreement with your provider, make sure that security is being reinforced as highly important. Make sure that there are available auditing tools and reporting functions, otherwise the contract would be useless without any way of assessing how the security is holding up.

By Salam Abdul

About Abdul

Abdul is a senior consultant with Energy Services, and author of numerous blogs, books, white papers, and tutorials on cloud computing and accomplished technical writer with CloudTweaks. He earned his bachelor’s degree in Information Technology, followed by an MBA-IT degree and certifications by Cisco and Juniper Networks.

He has recently co-authored: Deploying and Managing a Cloud Infrastructure: Real-World Skills for the CompTIA Cloud+ Certification (Wiley).

View All Articles

Sorry, comments are closed for this post.

Protecting Devices From Data Breach: Identity of Things (IDoT)

Protecting Devices From Data Breach: Identity of Things (IDoT)

How to Identify and Authenticate in the Expanding IoT Ecosystem It is a necessity to protect IoT devices and their associated data. As the IoT ecosystem continues to expand, the need to create an identity to newly-connected things is becoming increasingly crucial. These ‘things’ can include anything from basic sensors and gateways to industrial controls…

Vendors To Enter The Cyber Security Game

Vendors To Enter The Cyber Security Game

IT Regulatory Compliance as the Next Big Focus for Cloud Vendors Back in October 2014, Defense Information Systems Agency (DISA) submitted a public request for information, calling for the assessment of the marketplace’s ability to “provide cloud ecosystems and services in two integration models that place vendor cloud services on DoD networks for use by…

The Implication Of Consumers Not Having Their Heads In The Cloud

The Implication Of Consumers Not Having Their Heads In The Cloud

Customers CAN Better Protect Themselves The majority of cloud consumers don’t understand what cloud is let alone what the implications of transacting in the cloud or of having their data and digital assets stored in the cloud. As a result most consumers are their own worst enemy when it comes to putting themselves at risk…

Carve Outs And The Cloud: A Synergistic Coupling

Carve Outs And The Cloud: A Synergistic Coupling

Carve Outs and the Cloud The mergers and acquisitions market is a complex and challenging industry and the last two years has seen a rise in the number of transactions. Working with companies in this space over the last 10 years, we at RKON have seen and hopefully helped change the mindset of private equity…

Medical Professionals Face Unique Challenges Using The Cloud

Medical Professionals Face Unique Challenges Using The Cloud

Medical Professionals Using The Cloud The presence and value of Cloud tools have seeped into virtually every industry, and the medical profession is certainly no exception. However, because of the special rules regarding patient privacy, specifically those found in HIPAA, people handling patient information must follow specific guidelines that in many cases, are violated by…

Are Cloud Solutions Secure Enough Out-of-the-box?

Are Cloud Solutions Secure Enough Out-of-the-box?

Out-of-the-box Cloud Solutions Although people may argue that data is not safe in the Cloud because using cloud infrastructure requires trusting another party to look after mission critical data, cloud services actually are more secure than legacy systems. In fact, a recent study on the state of cloud security in the enterprise market revealed that…

Driving Insight: Analytics And The Internet of Things

Driving Insight: Analytics And The Internet of Things

Analytics And The Internet of Things  For many businesses, the Internet of Things is playing an increasingly important role, influencing day-to-day operations and strategic planning. An ecosystem of growing complexity and sophistication, the IoT calls for careful navigation: advances in connectivity and cloud-based platforms have opened up a wider range of solutions to IT decision-makers…

CloudTweaks is recognized as one of the leading influencers in cloud computing, infosec, big data and the internet of things (IoT) information. Our goal is to continue to build our growing information portal by providing the best in-depth articles, interviews, event listings, whitepapers, infographics and much more.

Sponsor