Cloud security at its core, cloud security is a combination of hardware, software, application, data, and user security. Cloud providers provide services that you use to build your applications. Cloud security requires collaboration between both parties; providers are responsible for securing the infrastructure on which the services run and you are responsible for securing your data using the best practices, templates, products, and solutions made available by your cloud provider. Your specific responsibilities vary based on the cloud computing model you choose: infrastructure-as-a-service (IaaS), platform-as-a-service (PaaS), or serverless.

This chapter covers the Google Cloud security model and the services that you can use to protect your applications in Google Cloud.

When you think about Cloud Security there are many areas of responsibility — securing infrastructure, securing the network, securing data, securing applications, managing identities and access, and securing endpoints. There are also ongoing processes for security operations and governance as well as risk and compliance management. But the best part of building your application on the cloud is that you share the security responsibility with the cloud provider.

Cloud Security Is Shared ...