Access your Pro+ Content below.
Cloud computing security framework may ease security concerns
This article is part of the March 2009 issue of Information Security magazine
Not long ago, a researcher at the pharmaceutical company Eli Lilly needed to analyze a lot of data fast. If the results turned out as he believed, the company could have a world-beating drug on its hands. The only trouble was that he would need 25 servers to crunch the huge volume of data, and he knew it could take up to three months to get approval for the investment. In an industry where the cost of delaying a product is estimated at $150 per second (yes, per second), that three months' wait would be very expensive indeed. Adrian Seccombe, the company's global head of security, explains: "He went to a tame IT guy who'd been playing around in this thing called 'The Cloud'. The guy got out his credit card, plugged it into Amazon Web Services, and had 25 servers up and running in the cloud within an hour." They then realized they'd built the servers incorrectly so they had to take them down and start again. The second time, it took them 40 minutes to get the servers up and running. "Within two hours they were crunching the data. ...
Access this Pro+ Content for Free!
Features in this issue
Smaller organizations need to be more resourceful, and we'll explain how risk management, automation and managed security services, among others, can help.
On-demand computing services can save large enterprises and small businesses a lot of money, but security and regulatory compliance become difficult.
PCI DSS is requiring companies to buy Web application firewalls. We'll show how you how to pick the WAF that's right for you, and how to use it so your company is compliant -- and more secure.
How much information is too much information, and how will you monitor and manage the use of Web 2.0 inside your organization?
The Jericho Forum is expected to release a framework of security considerations for organizations moving business to the cloud.
Columns in this issue
The Obama Administration is conducting a review of the government's cybersecurity policies and process. We should be encouraged that security could move beyond the useless paper exercise it is today
As enterprises outsource more services and share data, they must be vigilant about the security of third parties.
Effective data classification in the enterprise requires a simple approach.