The importance and ownership of cloud security education

Grazed from e27 Web Innovation. Author: Goutama Bachtiar.

With rising adoption of cloud deployments, users, IT managers and stakeholders will need to be better educated on cloud security standards and best practices.
In cloud computing, one of the bigger concerns among users and IT managers is security. It encompasses these fundamental aspects: authorization (who is allowed to access), authentication (what level of access does someone has), data integrity, and services availability. Furthermore, cloud security will refer to a set of controls, compliances, policies and technologies in regards to securing the data, applications, and infrastructure.

So let’s dig in for more. From a supply and demand perspective, the providers (infrastructure, software or platform) are expected by their users to provide for security measures. For instance, enterprise-grade cloud applications frequently utilize server virtualization, which introduces an additional layer that must be configured, managed and secured in the appropriate way…

Risk arises when data from one segment in a server escapes into another segment, which in return makes one’s data backup strategy and recoverability extremely important. Backups should be frequent and reliable. Virtualization software – widely known as the “hypervisor” – should be able to deal with this risk. In short, securing infrastructure and protecting the user’s data and applications, are among the provider’s main duties. Meanwhile, making sure that the vendor has taken necessary security measures properly in order to protect the aforementioned vital components, is the client’s primary task in terms of security…

Read more from the source @ http://e27.sg/2012/12/28/the-importance-and-ownership-of-cloud-security-education/