Book description
Do you trust the Cloud? Should you trust the Cloud?
'Cloud Computing' are the words on everyone's lips – it's the latest technology, the way forward. But how safe is it? Is it reliable? How secure will your information be?
Questions ...Cloud Computing: Assessing the risks answers these questions and many more. Using jargon-free language and relevant examples, analogies and diagrams, it is an up-to-date, clear and comprehensive guide the security, governance, risk, and compliance elements of Cloud Computing.
Written by three internationally renowned experts, this book discusses the primary concerns of most businesses leaders – the security and risk elements of the Cloud. But 'security and risk' are just two elements of Cloud Computing, and this book focuses on all the critical components of a successful cloud programme including – compliance, risk, reliability, availability, areas of responsibility, Cloud Computing borders, legalities, digital forensics and business continuity. This book covers them all.
... and answersThis book will enable you to:
What others are saying about this book …
"I am convinced that you will find equal delight in absorbing the sage advice and pragmatic guidance that the team offers in this book and look forward to seeing it perched on the shelves amongst my other go-to guides for Cloud Computing." Christopher Hoff
"… It should be a most welcome read to any senior stakeholders looking to embrace the new Cloud Computing wave." Eugene Kaspersky, Chairman and CEO, Kaspersky Lab
"Remarkable work of synthesis performed by the authors, this book is a must-have for anyone willing to have both a clear and pragmatic approach, as well as a better understanding of impacts on business when dealing with Cloud Computing." Ludovic Petit, Chief Information Security Officer, SFR
Table of contents
- Cover
- Title
- Copyright
- Foreword
- About the Authors
- Acknowledgements
- Contents
-
Chapter 1: Cloud Computing Explained
- The potential of Cloud Computing
- Cloud Computing defined
- Key characteristics of Cloud Computing
- Characteristic One: On-demand self-service
- Characteristic Two: Broad network access
- Characteristic Three: Resource pooling
- Characteristic Four: Rapid elasticity
- Characteristic Five: Measured service
- Summary of Cloud Computing characteristics
- Cloud Computing definition summary
- What The New York Times tells us about Cloud Computing
- Chapter 2: How Cloud Computing Changes Security, Governance, Risk and Compliance
- Chapter 3: Governance of Cloud Computing
- Chapter 4: Cloud Computing Top Security Risks
- Chapter 5: Assessing Security in the Cloud
- Chapter 6: Cloud Computing Application Security
-
Chapter 7: Organisational Risks Associated with Cloud Computing
- Organisational risks of Cloud Computing
- Cloud Computing does and doesn’t change everything
- Impact of Cloud Computing on executive decision-making roles
- Impact of Cloud Computing on traditional IT roles
- Instituting DevOps
- Developing for a multi-tenant universe
- The runaway train: Cloud sprawl
- Delivering IT-as-a-Service
-
Chapter 8: Business Continuity and Disaster Recovery in Cloud Computing
- Business continuity overview
- Disaster recovery overview
- Differences between Cloud vs. traditional BC and DR
- SaaS business continuity challenges
- PaaS business continuity challenges
- IaaS business continuity challenges
- Possible benefits
- Possible issues and challenges
- Important considerations
- What to ask your Cloud provider
- Cloud-based BC and DR offerings
- Restructuring plans and procedures
- Testing and walkthrough of updated plans
- Recent business continuity/disaster recovery case study
-
Chapter 9: Investigations and Forensics in the Cloud
- Forensics overview
- Forensics: what has changed?
- Who conducts these investigations?
- Forensic procedures and requirements
- Forensic investigations vs. analysis
- Traditional forensics vs. Cloud forensics
- Data in transit
- Encryption and investigations
- Custom Cloud APIs
- Cloud solution forensic tools
- In summary
-
Chapter 10: Cloud Computing Borders – National and International Deployment 244
- Data location
- Legislation and regulatory (including privacy)
- Data protection and data privacy
- Data retention
- EU Data Protection/Privacy
- Recent reporting trends
- European Privacy Directive 2002/58/EC
- Current EU data protection and privacy challenges
- Where to next for EU data protection?
- United States data protection and privacy
- International privacy at a glance (USA/EU/APEC)
- Guidelines for success
- In summary
-
Chapter 11: Evaluating Compliance in the Cloud
- Compliance overview
- Need for compliance functions
- Compliance vs. internal audit
- Value of compliance done correctly
- Cloud first – compliance second?
- What changes for compliance functions?
- Who is responsible for what?
- Compliance strategy and framework
- The domino effect
- Governance
- Regulatory challenges
- Cost of compliance (or non-compliance!)
- Cloud Computing standards and compliance
- Recent trends and surveys
- Segregation of duties
- SOD in Cloud environments
- Where to start?
- Chapter 12: Where Cloud Computing is Heading
- ITG Resources
Product information
- Title: Cloud Computing: Assessing the Risks
- Author(s):
- Release date: April 2012
- Publisher(s): IT Governance Publishing
- ISBN: 9781849283618
You might also like
book
VMware ESX Server in the Enterprise: Planning and Securing Virtualization Servers
VMware ESX Server in the Enterprise Planning and Securing Virtualization Servers The Most Complete, Practical, Solutions-Focused …
book
Advanced Persistent Training : Take Your Security Awareness Program to the Next Level
Gain greater compliance with corporate training by addressing the heart of the very awareness vs. compliance …
book
Building an Enterprise-Wide Business Continuity Program
Drawing on over two decades of experience creating continuity plans and using them in actual recoveries, …
book
VMware Workstation – No Experience Necessary
Get started from scratch with Vmware Workstation using this essential guide. Taking you from installation on …