Access "Security response teams grapple with cloud computing security concerns"
This article is part of the July/August 2010 issue of Debunking myths about the advanced persistent threat (APT)
Udo Schweigert, a security analyst who runs the computer emergency readiness team at Siemens AG, says his company is well-versed in dealing with cloud providers but that work remains. The German-based technology giant has more than 450,000 employees in 180 countries. So it wasn't surprising that a division in Japan contracted with one software-as-a-service provider while the company's sales offices in Russia chose another to suit their needs, Schweigert says. Siemens moved quickly to develop policies and educate business users about the importance of data security when choosing a cloud provider. The company's work isn't done, however. More policies are needed to address cloud-based infrastructure and platform providers, he says. "We were lacking risk management with many of these projects," Schweigert says. "That's why we've made it part of our corporate risk management strategy." Cloud computing was a hot topic at June's Forum of Incident Response and Security Teams (FIRST) Conference 2010, where Schweigert spoke on a panel. FIRST attendees -- many of them ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Security response teams grapple with cloud computing security concerns
No clear answers at conference but experts urge organizations to proceed with caution.
-
Understanding the advanced persistent threat
Think you know all you need to know about the advanced persistent threat? We'll define APT and dispel a few myths.
-
Security response teams grapple with cloud computing security concerns
-
-
Building an information security skills matrix
Your information security skills matrix – that connection between your tangible skills and personal qualities – is what separates you from your peers.
-
The pros and cons of security software-as-a-service
Security software-as-a-service can help organizations reduce security headaches but also can present challenges.
-
Building an information security skills matrix
-
Columns
-
Information security maturity model
by Chris McClean, Contributor
Use an information security maturity model to illustrate how security supports the organization.
-
Three hazards to avoid in planning a career in information security
Building a career plan just might lead security professionals headfirst into some dubious challenges.
-
Insecure software: A never-ending saga
Insecure software has been a long-standing issue in the industry. Progress on secure software development is critical.
-
Information security maturity model
by Chris McClean, Contributor
More Premium Content Accessible For Free
Compliance and risk modeling
E-Zine
You can fight compliance or embrace it, but one way or the other, you can’t escape it. Increasingly, smart organizations are not just accepting ...
Essentials: Threat detection
E-Zine
Antivirus and intrusion prevention aren’t the threat detection stalwarts they used to be. With mobile endpoints and new attack dynamics, enterprises ...
Managing identities in hybrid worlds
E-Zine
The world in which successful IAM programs must be implemented is increasingly complex, a mix of legacy on-premise IAM infrastructures, cloud-based ...