Successfully reported this slideshow.

Cloud Security- In Perspective

0

Share

Sep. 29, 2010
0 likes 4,553 views
Upcoming SlideShare
A Cloud Security Ghost Story Craig Balding
A Cloud Security Ghost Story Craig Balding
Loading in …3
×
1 of 85
1 of 85

Cloud Security- In Perspective

Sep. 29, 2010
0 likes 4,553 views

0

Share

Download to read offline

Recommended

More Related Content

Viewers also liked

PRIVACY-PRESERVING PUBLIC AUDITING FOR DATA STORAGE SECURITY IN CLOUD COMPUTING
Kayalvizhi Selvaraj
2016 -11-18 OpenSCAP Workshop Coursebook
Shawn Wells
Cloud Computing Security
Ninh Nguyen
Cloud computing security issues and challenges
Dheeraj Negi
Cloud security ppt
Venkatesh Chary
Cloud Security At Netflix, October 2013
Jay Zarfoss
Cloud security
François Boucher
Cloud security and security architecture
Vladimir Jirasek
Data security in cloud computing
Prince Chandu
Slideshare Powerpoint presentation
elliehood
Slideshare ppt
Mandy Suzanne

More from Justin Pirie

Adoption Trends for SaaS- Cloud Computing World Forum 2012
Justin Pirie
Unifying Devices in the Cloud
Justin Pirie
Microsoft Hosters Sweden- Becoming a Trusted Advisor to Sell Cloud
Justin Pirie
The end of IT as we know it.
Justin Pirie
CLT Law Conference Cloud intro
Justin Pirie
Empowering and Securing BYOD Email
Justin Pirie
Copenhagen Lean Startup
Justin Pirie
The Great Migration- Cloud Circle
Justin Pirie
Bristol Tech Startup School: Lean Startup
Justin Pirie
HostingCon 2011- How Not Just to Survive but Thrive in the Evolving Hosting M...
Justin Pirie
Microsoft Worldwide Partner Conference Session
Justin Pirie
Cloud- A Technical or Organisational Challenge? Or Both?
Justin Pirie
Email: The Future Direction
Justin Pirie
Cloud and The Channel- Where's the space?
Justin Pirie
Cloud and the Channel- A Perfect Storm?
Justin Pirie
Lean Startup - A Primer for Entrepreneurs
Justin Pirie
The Hidden Security Danger – Don’t Let Email Be Your Downfall
Justin Pirie
Mimecast Partner Day
Justin Pirie
Swindon- Talk on Cloud
Justin Pirie
Cloud: Space for the Channel?
Justin Pirie

Featured

What to Upload to SlideShare
SlideShare
Be A Great Product Leader (Amplify, Oct 2019)
Adam Nash
Trillion Dollar Coach Book (Bill Campbell)
Eric Schmidt
APIdays Paris 2019 - Innovation @ scale, APIs as Digital Factories' New Machi...
apidays
A few thoughts on work life-balance
Wim Vanderbauwhede
Is vc still a thing final
Mark Suster
The GaryVee Content Model
Gary Vaynerchuk
Mammalian Brain Chemistry Explains Everything
Loretta Breuning, PhD
Blockchain + AI + Crypto Economics Are We Creating a Code Tsunami?
Dinis Guarda
The AI Rush
Jean-Baptiste Dumont
AI and Machine Learning Demystified by Carol Smith at Midwest UX 2017
Carol Smith
10 facts about jobs in the future
Pew Research Center's Internet & American Life Project
Harry Surden - Artificial Intelligence and Law Overview
Harry Surden
Inside Google's Numbers in 2017
Rand Fishkin
Pinot: Realtime Distributed OLAP datastore
Kishore Gopalakrishna
How to Become a Thought Leader in Your Niche
Leslie Samuel
Visual Design with Data
Seth Familian
Designing Teams for Emerging Challenges
Aaron Irizarry
UX, ethnography and possibilities: for Libraries, Museums and Archives
Ned Potter
Winners and Losers - All the (Russian) President's Men
Ian Bremmer

Related Books

Free with a 14 day trial from Scribd

See all
The Ministry of Common Sense: How to Eliminate Bureaucratic Red Tape, Bad Excuses, and Corporate BS Martin Lindstrom
(4/5)
Free
Hot Seat: What I Learned Leading a Great American Company Jeff Immelt
(4.5/5)
Free
Ladies Get Paid: The Ultimate Guide to Breaking Barriers, Owning Your Worth, and Taking Command of Your Career Claire Wasserman
(5/5)
Free
We Should All Be Millionaires: A Woman’s Guide to Earning More, Building Wealth, and Gaining Economic Power Rachel Rodgers
(4.5/5)
Free
Believe IT: How to Go from Underestimated to Unstoppable Jamie Kern Lima
(4.5/5)
Free
No Filter: The Inside Story of Instagram Sarah Frier
(4.5/5)
Free
Bezonomics: How Amazon Is Changing Our Lives and What the World's Best Companies Are Learning from It Brian Dumaine
(4/5)
Free
Ask for More: 10 Questions to Negotiate Anything Alexandra Carter
(4/5)
Free
How to Lead: Wisdom from the World's Greatest CEOs, Founders, and Game Changers David M. Rubenstein
(5/5)
Free
Blue-Collar Cash: Love Your Work, Secure Your Future, and Find Happiness for Life Ken Rusk
(4/5)
Free
How I Built This: The Unexpected Paths to Success from the World's Most Inspiring Entrepreneurs Guy Raz
(4.5/5)
Free
Inclusify: The Power of Uniqueness and Belonging to Build Innovative Teams Stefanie K. Johnson
(0/5)
Free

Related Audiobooks

Free with a 14 day trial from Scribd

See all
Power, for All: How It Really Works and Why It's Everyone's Business Julie Battilana
(4/5)
Free
The Perfect Day to Boss Up Rick Ross
(4.5/5)
Free
Twelve and a Half: Leveraging the Emotional Ingredients Necessary for Business Success Gary Vaynerchuk
(5/5)
Free
You're Cute When You're Mad: Simple Steps for Confronting Sexism Celeste Headlee
(4/5)
Free
The Power of Conflict: Speak Your Mind and Get the Results You Want Jon Taffer
(0/5)
Free
Four Thousand Weeks: Time Management for Mortals Oliver Burkeman
(5/5)
Free
Disrupting the Game: From the Bronx to the Top of Nintendo Reggie Fils-Aimé
(5/5)
Free
Your Work from Home Life: Redefine, Reorganize and Reinvent Your Remote Work (Tips for Building a Home-Based Working Career) M.J. Fievre
(4/5)
Free
Outstanding Leadership Stan Toler
(4/5)
Free
Full Out: Lessons in Life and Leadership from America's Favorite Coach Monica Aldama
(4/5)
Free
Pressure Makes Diamonds: Becoming the Woman I Pretended to Be Valerie Graves
(4.5/5)
Free
Just Work: How to Root Out Bias, Prejudice, and Bullying to Build a Kick-Ass Culture of Inclusivity Kimberly Scott
(3.5/5)
Free
The Three Happy Habits: Techniques Leaders Use to Fight Burnout, Build Resilience and Create Thriving Workplace Cultures Beth Ridley
(4.5/5)
Free
Own the Arena: Getting Ahead, Making a Difference, and Succeeding as the Only One Katrina M. Adams
(5/5)
Free
Subtract: The Untapped Science of Less Leidy Klotz
(4/5)
Free
Create: Tools from Seriously Talented People to Unleash Your Creative Life Marc Silber
(4.5/5)
Free

Cloud Security- In Perspective

  1. 1. Cloud Security- Is my data safe?<br />Justin Pirie<br />@justinpirie<br />blog.mimecast.com<br />jpirie@mimecast.com<br />CMA- London<br />September 29th2010<br />matthewbradley<br />
  2. 2. Analyst Blogger<br />
  3. 3. Community Manager<br />
  4. 4. Social Media Influence<br />
  5. 5. Where I work<br />
  6. 6. Cloud Services for Microsoft Exchange<br />tipiro<br />
  7. 7. Cloud Wrapper<br />
  8. 8. Email Security<br />matthewbradley<br />
  9. 9. Email Continuity<br />neilalderney123<br />
  10. 10. Email Archive<br />dolescum<br />
  11. 11. Benefits of Google Apps<br />
  12. 12. For Microsoft Exchange<br />
  13. 13. What do users get?<br />minifig<br />
  14. 14. Unlimited Storage<br />mescon<br />
  15. 15. Fast Search<br />Ronan_C<br />
  16. 16. Uptime<br />szeke<br />
  17. 17. Over 500,000 users can’t be wrong!<br />
  18. 18. Cloud Security- Is my data safe?<br />matthewbradley<br />
  19. 19. Today’s Presentation<br />iSlime<br />
  20. 20. Area I normally specialise in...<br />massdistraction<br />
  21. 21. James Blake<br />Barry Gill<br />Cloud Security Experts<br />matthewbradley<br />
  22. 22. James Blake- CISO<br />flik<br />
  23. 23. Barry Gill...<br />bowbrick<br />
  24. 24. Can’t walk...<br />Badly Drawn Dad<br />
  25. 25. Stuck with me<br />Pixzamillion<br />
  26. 26. Cloud Landscape<br />zoutedrop<br />
  27. 27. Lets have some data<br />bionicteaching<br />
  28. 28. To Understand<br />russelldavies<br />
  29. 29. US Cloud Adoption<br />2009 = 36%<br />
  30. 30. US Cloud Adoption<br />2010 = 56%<br />
  31. 31. US Businesses Considering Adopting<br />70%<br />
  32. 32. UK lags behind US attitudes<br />6%<br />
  33. 33. 2010 Hype Cycle<br />
  34. 34. 2010 Hype Cycle<br />
  35. 35. Grand Canyon between adopters<br />James Marvin Phelps (mandj98)<br />
  36. 36. Adopters: Cloud Improved Security<br />57%<br />
  37. 37. Non Adopters: Cloud = Security Risk<br />62%<br />
  38. 38. Where is the gap?<br />massdistraction<br />
  39. 39. Blocking Cloud Initiatives<br />dmoola<br />
  40. 40. What’s the problem?<br />aturkus<br />
  41. 41. Cloud is embryonic<br />viralbus<br />
  42. 42. Standards just emerging<br />mayakamina<br />
  43. 43. So.... Caveat Emptor<br /> jeffc5000<br />
  44. 44. And why it sometimes feels like this...<br />gxdoyle<br />
  45. 45. Change Direction<br />Paul Wicks<br />
  46. 46. James Blake<br />Barry Gill<br />Security<br />matthewbradley<br />
  47. 47. Presented as Binary<br />MarkOMeara<br />
  48. 48. Reality...<br />cdw9<br />
  49. 49. Ask an InfoSec pro<br />thomasglobal<br />
  50. 50. What is Security?<br />Thomas Hawk<br />
  51. 51. Management of Risk<br />kyz<br />
  52. 52. Too easily think of hardware<br />stars6 / Leonardo Rizzi<br />
  53. 53. Step #1: Define Acceptable Risks<br />tnarik<br />
  54. 54. Step #2: Assess your Risks<br />Eneas<br />
  55. 55. Step #3: Mitigate Risks<br />get down<br />
  56. 56. Step #4: Transfer Risks<br />Brandon Christopher Warren<br />
  57. 57. Step #5: Accept Risks<br />dhammza<br />
  58. 58. Step #6: Monitor / Audit<br />Boyce Duprey<br />
  59. 59. Unsure about Cloud Security?<br />jessicafm<br />
  60. 60. Cloud Security is Opaque<br />Andrew Coulter Enright<br />
  61. 61. Compared to your tin<br />stars6 / Leonardo Rizzi<br />
  62. 62. Baseline Current Risks<br />Chuck “Caveman” Coker<br />
  63. 63. i.e. Where are we today?<br />Chris D 2006<br />
  64. 64. Trusting Users....<br />Thai Jasmine (Take good care :-))<br />
  65. 65. And Sysadmins....<br />leftcase<br />
  66. 66. Others...<br />Tambako the Jaguar<br />
  67. 67. Permissions Nightmare<br />marimoon<br />
  68. 68. Managing those risks?<br />Patrick Q<br />
  69. 69. 6 Steps?<br />bitchcakesny<br />
  70. 70. Is expensive<br />jo'nas<br />
  71. 71. Got the budget?<br />The Prime Minister's Office<br />
  72. 72. “Quiscustodiet<br />ipsoscustodes?”<br />
  73. 73. Cloud: Guards Guard<br />
  74. 74. Cloud Security?<br />matt.hintsa<br />
  75. 75. #1. It’s their Business<br />Esthr<br />
  76. 76. #2. Financially Responsible<br />wwarby<br />
  77. 77. #3. Scale<br />laffy4k<br />
  78. 78. #4. Specialised Skills<br />SarahMcDॐ<br />
  79. 79. #5. Cumulative Effect of Multiple Customers<br />Leo Reynolds<br />
  80. 80. #6. Best Practice: Embedded, Distributed <br />Lars Plougmann<br />
  81. 81. #7. Focus<br />Chris Campbell<br />
  82. 82. Want to be the Guards Guard?<br />
  83. 83. Remember: Caveat Emptor<br /> jeffc5000<br />
  84. 84. But proportional to Risk<br />gxdoyle<br />
  85. 85. Any Questions?<br />Justin Pirie<br />@justinpirie<br />blog.mimecast.com<br />jpirie@mimecast.com<br />matthewbradley<br />

Editor's Notes

  • Security
  • Security
  • Continutity
  • Archive
  • Bringing all the benefits of Google apps- horizontal scalability, reliability, etc
  • To Microsoft Exchange
  • Security
  • Security
  • From the Mimecast Cloud Adoption Survey
  • From the Mimecast Cloud Adoption Survey http://www.mimecast.com/events-press/press-releases/article/view/cloud-computing-delivering-on-its-promise-but-doubts-still-hold-back-adoption/462/
  • From the Mimecast Cloud Adoption Survey http://www.mimecast.com/events-press/press-releases/article/view/cloud-computing-delivering-on-its-promise-but-doubts-still-hold-back-adoption/462/
  • From the Mimecast Cloud Adoption Survey http://www.mimecast.com/events-press/press-releases/article/view/cloud-computing-delivering-on-its-promise-but-doubts-still-hold-back-adoption/462/
  • 2010 Gartner Hype Cycle for emerging technologies
  • 2010 Gartner Hype Cycle for emerging technologies
  • From the Mimecast Cloud Adoption Survey http://www.mimecast.com/events-press/press-releases/article/view/cloud-computing-delivering-on-its-promise-but-doubts-still-hold-back-adoption/462/
  • From the Mimecast Cloud Adoption Survey http://www.mimecast.com/events-press/press-releases/article/view/cloud-computing-delivering-on-its-promise-but-doubts-still-hold-back-adoption/462/
  • Or being blocked
  • What’s the problem?
  • Standards are only just emerging
  • Buyer Beware- http://en.wikipedia.org/wiki/Caveat_emptorUnder the doctrine of caveat emptor, the buyer could not recover from the seller for defects on the property that rendered the property unfit for ordinary purposes. The only exception was if the seller actively concealed latent defects or otherwise made material misrepresentations amounting to fraud.Before statutory law, the buyer had no warranty of the quality of goods. In many jurisdictions now, the law requires that goods must be of &quot;merchantable quality&quot;. However, this implied warranty can be difficult to enforce and may not apply to all products. Hence, buyers are still advised to be cautious.
  • Which is why we in cloud feel like we’re being beaten up...
  • Security
  • Security is often presented as a binary object. It’s not.
  • It’s much more complex than that.
  • What is security?
  • Security is the management of risks
  • Define Acceptable risk
  • Step #6: Monitor Risks
  • Some People are unsure about Cloud Security
  • Probably because of the relative opacity of Cloud compared to the transparency of a private network and the control you can exert on it
  • The key is to understand your current risks- baseline them
  • i.e. Where are we today?
  • Users Applications File shares Email Document management
  • Sysadmins User based access Server access Database access
  • Others: Internet VPN Extranet Customer/Partner portals API’s Suppliers Telco’s Tape warehousing Backup delivery personnel
  • Permissions Nightmare
  • How are we managing those risks today?
  • Applying the 6 step process?
  • Are you given the budget / skills to do it?
  • “Quiscustodietipsoscustodes?”Who will guard the guards themselves?DecimusIuniusIuvenalis
  • Cloud can be a way to become a guard’s guard, instead of the guard
  • Reasons to go Cloud Security
  • Reason to go Cloud security #1 It’s their business- and their reputation depends on it
  • #2 Money - they are held financially responsible
  • Reason #3 Scale- Cloud platforms have scale that customers could never achieve on their own- protecting against large scale attacks
  • Reason #4 Specialised Skills- employ specific people to do specialised job. Cumulative effect of multiple customers
  • Cumulative effect of multiple customers
  • Best Practice embedded in organisation and distributed. Not dependent on one person
  • Not just about competence and budget- but focus. It’s all they do.
  • Cloud can be a way to become a guard’s guard, instead of the guard
  • Buyer Beware- http://en.wikipedia.org/wiki/Caveat_emptorUnder the doctrine of caveat emptor, the buyer could not recover from the seller for defects on the property that rendered the property unfit for ordinary purposes. The only exception was if the seller actively concealed latent defects or otherwise made material misrepresentations amounting to fraud.Before statutory law, the buyer had no warranty of the quality of goods. In many jurisdictions now, the law requires that goods must be of &quot;merchantable quality&quot;. However, this implied warranty can be difficult to enforce and may not apply to all products. Hence, buyers are still advised to be cautious.
  • But make it proportional to risk- especially to CURRENT RISKS
  • Security

    • ×