Addressing the UK NCSC’s Cloud Security Principles

Advertise on CloudTweaks

As your organization adopts more cloud services, it’s essential to get a clear picture of how sensitive data will be protected. Many authorities, from government regulators, to industry standards bodies and consortia, have provided guidance on how to evaluate cloud security. Notably, the UK National Cyber Security Centre offers a framework built around 14 Cloud Security Principles, and we recently updated our response detailing how we address these principles for both Google Cloud Platform (GCP) and G Suite. Google Cloud customers in the UK public sector can use the response to assess the suitability of these Google Cloud products to host their data with sensitivity levels up to “OFFICIAL,” including “OFFICIAL SENSITIVE.”

The UK National Cyber Security Centre was set up to improve the underlying security of the UK internet and to protect critical services from cyber attacks. Its 14 Cloud Security Principles are expansive and thorough, and include such important considerations as data in-transit protectionsupply chain securityidentity and authentication and secure use of the service.

The 14 NCSC Cloud Security Principles allow service providers like Google Cloud to highlight the security benefits of our products and services in an easily consumable format. Our response provides details about how GCP and G Suite satisfy the recommendations built into each of the principles, and describes the specific best practices, services and certifications that help us address the goals of each recommendation.

The NCSC also provides detailed ChromeOS deployment guidance to help organizations follow its 12 End User Device Security Principles. With an end-to-end solution encompassing GCP, applications and connected devices, Google Cloud provides the appropriate tools and functionality to allow you to adhere to the NCSC’s stringent security guidelines in letter and spirit.

Our response comes on the heels of GCP opening a new region in London, which allows GCP customers in the UK to improve the latency of their applications.

We look forward to working with all manner of UK customers, regulated and otherwise, as we build out a more secure, intelligent, collaborative and open cloud.

Source: David Fitton, Google Blog

CloudBuzz

A curated, syndicated list of leading technology news stories from around the world. Leading and trending stories are researched curated each day covering prominent technology vendors in the connected technology space.

CONTRIBUTORS

What Does The Transition To New Energy Teach Us About Cloud?

What Does The Transition To New Energy Teach Us About Cloud?

New Energy Shift CIOs report that private cloud is all the rage now. The Cisco’s of the world argue that ...
AI

We Can’t Have Smarter Cities Until We Get Smarter About Big Data

Smart Cities and Smarter Data Imagine the smart city of the future, for a moment, or how you see it ...
The Myths Vs Facts of Governance, Risk and Compliance

The Myths Vs Facts of Governance, Risk and Compliance

Governance, Risk, Compliance As disruptive technology changes the way businesses operate and communicate internally and externally, companies are facing increasing ...
Virtual Immersion And The Extension/Expansion Of Virtual Reality

Virtual Immersion And The Extension/Expansion Of Virtual Reality

Virtual Immersion And Virtual Reality This is a term I created (Virtual Immersion). Ah...the sweet smell of Virtual Immersion Success! Virtual ...
The Cure for Cloud Sprawl: Nimble Operationalization in the Multi-Cloud

The Cure for Cloud Sprawl: Nimble Operationalization in the Multi-Cloud

The Cure for Cloud Sprawl Enterprises are shifting to a cloud-first footing. That’s no secret. But just as companies and ...
SPIES LIKE US ALL AGREE: “CLOUD HAS BEEN A GODSEND

SPIES LIKE US ALL AGREE: “CLOUD HAS BEEN A GODSEND

Cloud Has Been A Godsend “Cloud has been a godsend for folks trying to implement systems quickly and for us ...
Connecting Smart Homes with the Internet of Things

Connecting Smart Homes with the Internet of Things

Internet of Things Wikipedia defines Internet of Things, as “the internetworking of physical devices, buildings, and other items embedded with ...
3 Challenges of Network Deployment in Hyperconverged Infrastructure for Private Cloud

3 Challenges of Network Deployment in Hyperconverged Infrastructure for Private Cloud

Hyperconverged Infrastructure In this article, we’ll explore three challenges that are associated with network deployment in a hyperconverged private cloud environment, ...

NEWS

CIOs Cutting Through the Hype and Delivering Real Value from Machine Learning, Survey Shows 

CIOs Cutting Through the Hype and Delivering Real Value from Machine Learning, Survey Shows 

New survey reveals progressive CIOs tap machine learning to solve everyday work problems SANTA CLARA, Calif. – October 17, 2017– A ...
IBM’s cloud, cybersecurity and data analytics business rose 11 percent to $8.8 billion in the quarter

IBM’s cloud, cybersecurity and data analytics business rose 11 percent to $8.8 billion in the quarter

Big Blue back on the attack, analysts cautious (Reuters) - IBM shares surged 5 percent on Wednesday after the world’s ...
Treacherous 12: Top Threats to Cloud Computing + Industry Insights

Treacherous 12: Top Threats to Cloud Computing + Industry Insights

Top Threats to Cloud Computing SEATTLE, Oct. 20, 2017 /PRNewswire/ -- The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining ...

CloudTweaks CONTRIBUTOR PROGRAM

The CloudTweaks thought leadership profile building program is free to join but requires a commitment of atleast 3 articles over a 12-month period. Articles must be vendor-neutral in nature, related to connected cloud technologies and written by an executive level business representative to be considered.

You can also contact us to hear more about our on-demand content and lead generation programs for 2018