Download   Report
  1. No category

Security Architecture - Week 13 - Cloud Security

Security Architecture
- Week 13 Cloud Security
MIS 5214 Security Architecture
Greg Senko
Week 13
•
•
•
•
•
In the News
Week 13 assignment
Lecture: Cloud Security
Quiz
Final Project Briefing and Discussions
MIS 5214 Security Architecture
Greg Senko
In the News
MIS 5214 Security Architecture
Greg Senko
Week 13 Assignment
MIS 5214 Security Architecture
Greg Senko
Cloud Security
As mobile devices such as smart phones
and tablet computers increasing displace
desktop computers and laptops in both
business and personal use, protecting
mobile computing is the becoming an
essential component in privacy and the
protection of business information assets.
MIS 5214 Security Architecture
Greg Senko
Cloud Security
•
•
•
•
•
•
•
•
•
•
•
What do we mean by cloud security?
9 Top Threats
Vendor Management
Compliance (standards)
Auditability
Security Architecture
Securing your data
Physical security
Business risk
Architecture Options
Top 9 Threat Mitigations
MIS 5214 Security Architecture
Greg Senko
Cloud Security
What do we mean by the cloud?
•
•
•
•
Web storage
Platform as a service (PaaS)
Software as a service
Business Process Outsourcing
MIS 5214 Security Architecture
Greg Senko
9 Top Cloud Computing Threats
1.
2.
3.
4.
5.
6.
7.
8.
9.
Data Breaches
Data Loss
Account or Service Traffic Hijacking
Insecure interfaces and APIs
Denial-of-service
Malicious Insiders
Cloud Abuse
Insufficient Due Diligence
Shared Technology Vulnerabilities
MIS 5214 Security Architecture
Greg Senko
Vendor Management
•
•
•
•
•
•
•
•
•
•
•
Who should you trust with your data?
Your day-to-day business operations?
Vendor comparisons
Reputation
Background Checks
Cost versus Risk
Insurance
Contract
Service Level Agreement
Penalties for non-compliance
Impact of risks
MIS 5214 Security Architecture
Greg Senko
Compliance
•
•
•
•
•
General standards for data center management
Local ordinances
Industry specific requirements (PCIDSS/HIPPA)
Security standards
Architectural standards
MIS 5214 Security Architecture
Greg Senko
Auditability
•
•
•
•
•
•
Monitoring
Standard Reporting
Availability of direct access and review
Financial Audits
IT Audits
Involvement of your internal audit
team
• Security Audits
• Certifications
MIS 5214 Security Architecture
Greg Senko
Security Architecture
•
•
•
•
•
•
•
•
•
•
Industry best practices
Identity management
Access management
Data Protections
Intrusion Detections
Monitoring and Surveillance
Employee screening
Multi-tenant security
Backup and resiliency strategy
Physical security
MIS 5214 Security Architecture
Greg Senko
Securing Data
•
•
•
•
•
•
MIS 5214 Security Architecture
Greg Senko
Data Architecture
Access Controls
Multi-tenancy issues
Data masking and encryptions
Privacy considerations
Backup and Recovery
Physical Security
•
•
•
•
•
•
•
•
Location
Physical layout / Lighting
Alarms – including fire, intrusion, tamper, motion
Physical barriers – including fences, bollards, tire
strips, gates
Access points – including doors, gates, turnstiles,
windows, docks, elevators and
Guards
Monitoring/CCTV
Access methods – including locks, proximity
cards/swipe cards, code or cipher locks
MIS 5214 Security Architecture
Greg Senko
Business Risk
•
•
•
•
•
•
Loss of direct control
Loss of business knowledge
Vendor failure to deliver
Scope creep
Cultural Issues
Loss of key personnel
MIS 5214 Security Architecture
Greg Senko
Architecture Options
•
•
•
•
•
•
Ref architecture
Local resiliency
3rd party resiliency
Hybrid cloud
Shared DLP, IDS management
Local cloud
MIS 5214 Security Architecture
Greg Senko
9 Top Cloud Threat Mitigations
1. Data breaches – credentials management and
access controls
2. Data Loss - shared DLP/IDS management
monitoring
3. Account or service traffic hijacking – network
security, proactive network analytics
4. Insecure interfaces and APIs - application and
patch management, machine land user level
policy enforcement
5. Denial of service – sub-netting, DMZ
construction, load balancing , DDOS detection
software appliance
MIS 5214 Security Architecture
Greg Senko
9 Top Cloud Threat Mitigations (Cont.)
6. Malicious insiders – background checks, DLP,
activity monitoring, behavioral analytics
7. Cloud abuse – activity monitoring, behavioral
analytics
8. Insufficient Due Diligence – Vendor management,
background checks, resiliency strategies
9. Shared technology vulnerabilities – VM instance
management, patch management, shared
security administration, behavioral analytics
MIS 5214 Security Architecture
Greg Senko
Week 13 (14) Quiz
MIS 5214 Security Architecture
Greg Senko
Final Project
MIS 5214 Security Architecture
Greg Senko
PERSON SPECIFICATION – Report and Systems Developer Criteria Essential

PERSON SPECIFICATION – Report and Systems Developer Criteria Essential

Medical Assistant Harvard Vanguard Harvard Vanguard in Kenmore

Medical Assistant Harvard Vanguard Harvard Vanguard in Kenmore

ENT4310 Business Economics and Marketing Gathering Market Information

ENT4310 Business Economics and Marketing Gathering Market Information

Management Information Systems: Classic Models New Approaches

Management Information Systems: Classic Models New Approaches

Greg S. Butler - Colorado Association of Healthcare Executives

Greg S. Butler - Colorado Association of Healthcare Executives

Atlantic Captain`s Academy will be conducting courses for

Atlantic Captain`s Academy will be conducting courses for

MIS INFORMATION SYSTEMS: AN OVERVIEW TJX Credit Card Breach

MIS INFORMATION SYSTEMS: AN OVERVIEW TJX Credit Card Breach

The Evolving Contact Center and Where It Is Going in... How the cloud, mobility, social media and analytics are forever... service delivery

The Evolving Contact Center and Where It Is Going in... How the cloud, mobility, social media and analytics are forever... service delivery

Please this as a Flyer TODAY!

Please this as a Flyer TODAY!

The Fig Tree Restaurant - Charlotte Living Magazine

The Fig Tree Restaurant - Charlotte Living Magazine

abcdocz.com

© Copyright 2024