Recently on SearchCloudSecurity
How to build a cloud security operations center
To better protect workloads and data in the cloud, security operations centers collaborate with various IT teams. Learn how to cloud-enable your organization's SOC.
More Highlights
- How to prepare for a zero-trust model in the cloud
Zero-trust security in the cloud is different than it is on premises. Learn the concepts and policies to effectively achieve a zero-trust model in the cloud.
- How enterprise cloud VPN protects complex IT environments
Do you know how enterprise cloud VPN differs from a traditional VPN? Explore how cloud VPN works and whether it's the right option for your hybrid IT environment.
- CASB, CSPM, CWPP emerge as future of cloud security
Complexity has introduced new needs and challenges when securing cloud environments. Find out how CASB, CSPM and CWPP tools have evolved to meet the changing cloud landscape.
Definitions
- cloud access security broker (CASB)
A cloud access security broker (CASB) is a software tool or service that sits between an organization's on-premises infrastructure and a cloud provider's infrastructure.
- software-defined perimeter (SDP)
Software-defined perimeter (SDP) is a security framework developed by the Cloud Security Alliance (CSA) that controls access to resources based on identity.
- hypervisor security
Hypervisor security is the process of ensuring the hypervisor, the software that enables virtualization, is secure throughout its life cycle, including during development, implementation, provisioning, management and de-provisioning.
Browse CloudSecurity Topics
Compliance and Governance
Learn how to maintain cloud computing compliance with government regulations and industry standards when moving IT operations and applications to a cloud environment. Also learn about cloud audit procedures, data governance for the cloud and other cloud computing management topics involving security.
Recent Definitions
- cloud access security broker (CASB)
A cloud access security broker (CASB) is a software tool or service that sits between an organization's on-premises infrastructure and a cloud provider's infrastructure.
- cloud computing
Cloud computing is a general term for anything that involves delivering hosted services over the internet.
- incident response
Incident response is an organized approach to addressing and managing the aftermath of a security breach or cyberattack, also known as an IT incident, computer incident or security incident.
Highlights
- How to prepare for a zero-trust model in the cloud
- Prevent cloud account hijacking with 3 key strategies
- The 8 best cloud security certifications for IT pros in 2020
More Compliance and Governance Topics
- Cloud Compliance: Federal Regulations and Industry Regulations
- Cloud Computing Frameworks and Standards
- Cloud Computing Security Issues: Incident Response - Data Breach Prevention
- Cloud Computing SLAs and Legal Issues
- Evaluating Cloud Computing Providers
- PCI DSS Requirements for Cloud Computing
Virtualization
Virtualization is at the core of any cloud computing initiative, regardless of delivery model or deployment method. Service providers, or internal enterprise private cloud managers, use virtualization technology to realize efficiencies and flexibility offered by cloud computing. This section covers the risks and considerations around cloud computing virtualization security, including how to manage and ensure secure multitenancy of virtual machines on a single host, security risks and threats by Web-based hackers to the hypervisor, and how to handle data management and data governance.
Recent Definitions
- hypervisor security
Hypervisor security is the process of ensuring the hypervisor, the software that enables virtualization, is secure throughout its life cycle, including during development, implementation, provisioning, management and de-provisioning.
- virtual firewall
A virtual firewall is a firewall device or service that provides network traffic filtering and monitoring for virtual machines (VMs) in a virtualized environment.
- Cloudburst VM escape
Cloudburst VM (virtual machine) escape is an exploit method, credited to research firm Kostya Kortchinsky Immunity Inc., that takes advantage of IBM's Cloudburst cloud service provisioning software for cloud providers and a flaw in VMware Workstation to enable a guest-level virtual machine to attack its host.
Highlights
- Cloud workload protection platform security benefits, features
- Benefits of open source container vulnerability scanning
- Use these CCSK practice questions to prep for the exam
Operations
As your organization moves its infrastructure, applications and data into the cloud, security operations such as network security, vulnerability management, data protection and application security, as well as cloud-based security services, take on new importance. Learn how to handle cloud security management, including how to keep the integrity of your data and applications as they move to the cloud and how outsourced IT operations affect security operations.
Recent Definitions
- What is identity and access management? Guide to IAM
Identity and access management (IAM) is a framework of business processes, policies and technologies that facilitates the management of electronic or digital identities.
- Software as a Service (SaaS)
Software as a service (SaaS) is a software distribution model in which a third-party provider hosts applications and makes them available to customers over the Internet.
- cryptography
Cryptography is a method of protecting information and communications through the use of codes so that only those for whom the information is intended can read and process it.
Highlights
- How to build a cloud security operations center
- How to prepare for a zero-trust model in the cloud
- How enterprise cloud VPN protects complex IT environments
More Operations Topics
- Cloud Data Storage, Encryption and Data Protection Best Practices
- Cloud Network Security Trends and Tactics
- Cloud Patch Management and Cloud Configuration Management
- Cloud Provisioning and Cloud Identity Management Issues
- Cloud Security Services: Cloud-Based Vulnerability Scanning and Antivirus
- Legacy Application Modernization for the Cloud
Architecture
Before purchasing or building cloud systems and services, learn the cloud computing security considerations and challenges involved the various cloud computing architecture models and how to address the "security in the cloud" challenge successfully.
Recent Definitions
- cloud access security broker (CASB)
A cloud access security broker (CASB) is a software tool or service that sits between an organization's on-premises infrastructure and a cloud provider's infrastructure.
- cloud computing
Cloud computing is a general term for anything that involves delivering hosted services over the internet.
- multi-tenancy
Multi-tenancy is an architecture in which a single instance of a software application serves multiple customers.
Highlights
- Security for SaaS applications starts with collaboration
- An inside look at the CCSP cloud security cert
- Test your cloud security smarts with these CCSP exam questions
More Architecture Topics
- Cloud Computing Infrastructure as a Service (IaaS) Security
- Cloud Computing Platform as a Service (PaaS) Security
- Cloud Computing Software as a Service (SaaS) Security
- Hybrid and Private Cloud Computing Security
- Public Cloud Computing Security