Data, Data, Who Has The Data?



Similar documents
HYBRID CLOUD Why is it important & how do you manage it?

SoftLayer: Introduction

Molnet öppnar nya möjligheter för kostnadseffektiv IT

How To Use An Ibm Cloud Server For Business

Building cloud infrastructure: The importance of scale, speed, and flexibility. William Lim Asia Channel Development Manager, SoftLayer

Mohamed Sayed SGI Cloud Executive Middle East & Africa. IBM ITIDA MoU WUP12370-USEN IBM Corporation

Infrastructure on the Cloud Faster, Easier, Economical

Succeed at a New Business Speed: IBM Cognos Business Intelligence on Cloud

IBM Cloud :Infrastructure-as-a-Service

Softlayer. Team-Enablement. An IBM company. 5th September IBM Corporation


Auf dem Weg zur digitalen Transformation

How WebSphere Fits in IBM s Cloud Strategy

Lifesize Cloud, Architecture. A comprehensive guide

3rd Party Audited Cloud Infrastructure SOC 1, Type II SOC 2, Type II ISO Annual 3rd party application Pen Tests.

Cloud Security. Peter Jopling IBM UK Ltd Software Group Hursley Labs. peterjopling IBM Corporation

Data Risk Management: ISM Ground to Cloud Summit. accelerate your ambition 1

How Safe are you in your Cloud?

Company Overview. October 2014

Strategic Compliance & Securing the Cloud. Annalea Sharack-Ilg, CISSP, AMBCI Technical Director of Information Security

A COALFIRE PERSPECTIVE. Moving to the Cloud. NCHELP Spring Convention Panel May 2012

PRODUCTS & SERVICES EQUINIX CLOUD EXCHANGE

10 Considerations for a Cloud Procurement. Anthony Kelly Erick Trombley David DeBrandt Carina Veksler January 2015

Hans Bos Microsoft Nederland.

Cloud Security. DLT Solutions LLC June #DLTCloud

AKAMAI WHITE PAPER. The Challenges of Connecting Globally in the Pharmaceutical Industry

Managing digital audio video court record in the age of HD video and YouTube. technology and privacy. Tony Douglass President, For The Record

Security Considerations for the Cloud

AT-A-GLANCE DATA CENTER INDUSTRY SEGMENTS

Cloud vision and capabilities

The Cloud is Not Enough Why Hybrid Infrastructure is Shaping the Future of Cloud Computing

Powering the Interconnected World Analyst Investor Day

Securing The Cloud. Foundational Best Practices For Securing Cloud Computing. Scott Clark. Insert presenter logo here on slide master

Fundamental Concepts and Models

Equinix Cloud Exchange Datacenter Forum. Stephane Buchs, IMS 17 th September 2014

A Secure Cloud Platform For egaming

Cloud Computing: A Primer on Legal Issues, Including Privacy and Data Security Concerns. Privacy and Information Management Practice / Washington, DC

Magento Enterprise Cloud Edition A Platform-as-a-Service for Your Business. Peter Sheldon VP Strategy, Magento Commerce

Virtualization in Enterprise Environment. Krisztian Egi

Microsoft Azure. The cloud platform built for business. Tarmo Tikerpäe DC SSP Microsoft

SOFTLAYER TECHNOLOGIES, INC.

Steelhead Cloud Accelerator

OWASP Chapter Meeting June Presented by: Brayton Rider, SecureState Chief Architect

Top 10 reasons to move to the cloud

Managing Cloud Computing Risk

Cloud Security and Managing Use Risks

Hybrid and Multi Cloud Deployments Via Cloud Exchange

Global Real Estate Outlook

Intermedia s Dedicated Exchange

Securing the Microsoft Cloud

Indian E-Retail Congress 2013

Five steps to Cloud Adoption. Laurent De Grauwe Sales Manager Datacenter

Seeing Though the Clouds

Current Reality: A Look at Cloud Opportunities Beyond the Hype

CRITICAL THINKING AT THE CRITICAL TIME CONSTRUCTION SOLUTIONS

Pacnet Premium Dedicated Internet Access Dedicated Internet Access for Web-Centric Enterprises

SoftLayer an IBM company

With Eversync s cloud data tiering, the customer can tier data protection as follows:

Infrastructure as a Service (IaaS)

Information Security: Cloud Computing

CONSULTING SERVICES Business & technology consulting and managed services

IBM Cloud Security Draft for Discussion September 12, IBM Corporation

GRC Stack Research Sponsorship

T&E. Where Business Travelers Spend Money

Hosting Services VITA Contract VA AISN (Statewide contract available to any public entity in the Commonwealth)

Het is een kleine stap naar een hybrid cloud

Singapore Internet Connectivity. Cloud Expo Asia 14 November 2013

Planning the Migration of Enterprise Applications to the Cloud

EVERYBODY S NETWORK CLOUD

Top 10 Tips and Tools for Meeting Regulatory Requirements and Managing Cloud Computing Providers in the United States and Around the World

IBM Website Monitoring on Cloud

IT Cloud / Data Security Vendor Risk Management Associated with Data Security. September 9, 2014

CLOUD BUILT TO PERFORM. Brought to you by

Joint General Assembly APLAC-PAC 2014 June 21-28, Guadalaja, Mexico

AWS Security. Security is Job Zero! CJ Moses Deputy Chief Information Security Officer. AWS Gov Cloud Summit II

Cloud Security Certification

Wrapping Audit Arms around the Cloud Georgia 2013 Conference for College and University Auditors

Cloud Provider Solutions

Information Security ISO Standards. Feb 11, Glen Bruce Director, Enterprise Risk Security & Privacy

Transcription:

Data, Data, Who Has The Data? 13 February 2015 Mari Heiser IBM STSM (Senior Technical Staff Member) Master Certified Architect IBM Cloud Security and Compliance Twitter: @MariHeiser

What is Cloud? The practice of using a remote server or computers hosted on the internet to store, manage and process data rather than on a local server or personal computer. 2

Cloud computing is continuing to transform the way organizations manage their infrastructure 80% of organizations were using cloud services by the end of 2014 Many cloud vendors stand ready to supply clouds to consumers in 2015 and beyond. 3

Cloud requires a change in mindset Logical vs physical Perimeters are dynamic rather than fixed Compliance concerns becomes a shared model between you and your provider Vendor certifications (proof of capabilities) Service type (hybrid, private, multi-tenancy) Data location Workload analysis Data ownership Ability to layer on additional security/privacy controls Incident response/disaster recovery Managed services 4

Look for these certification and/or compliance audits as proof of capabilities : ITAR Certification FedRAMP Certification 5

What is their service model? Do they offer hybrid, private, multi-tenancy or other solutions? Keep in mind, multi-tenant environments often have compliance challenges. Where are the servers located? You should be able to choose the exact location of your servers Do you know the exact location (geographical) your data will be stored? Do you have control of where it will reside? Some cloud services do not give you an option of where your data is physically stored in the world Do you retain ownership rights? Check to insure that your intellectual capital is your own Can the provider access your data? IaaS best case, no but may vary. PaaS depends SaaS likely Will you be allowed to bring your security policies, standards and tools? Best case, you should be able to bring some of your own to enhance what they offer. 6

Build your dynamic cloud on SoftLayer Complete control, access, and transparency Seamless fault-tolerant, multi-site topography Single-tenant and multi-tenant environments Complete portfolio available on demand in all data centers 7

SoftLayer offers a broad portfolio of infrastructure choices for greater business agility Bare metal with your own stack For high input and output (I/O)- intensive apps, databases, big data Shared virtual environment For unpredictable, seasonal or research and development workloads Dedicated virtualized environment Designed to be ideal for enterprises Build and customize the environment based on what you want to achieve Fine-tune to meet changing business needs or respond to competitive pressures Additional services for compute, storage, network, security, platform management and big data are available 8

SoftLayer currently holds certifications and/or is compliant with: In place now: SOC1, SOC2, SOC3 ISO/IEC 27001 Certification Managed to NIST800-53 FFIEC Ready Privacy Standards Self Assessment PCI DSS v3.0 AoC HIPAA Ready In progress due in 2015: 9 FISMA Moderate FedRAMP Certification ITAR Certification (FedRAMP Only)

SoftLayer s Global footprint allows regional data residency controlled by the customer London Amsterdam Frankfurt Paris India China Hong Kong Tokyo Seattle San Jose Los Angeles Houston Denver Dallas Mexico City Montreal Toronto Chicago New York City Washington D.C. Atlanta Miami Singapore Brazil Sydney Melbourne 10 DATA CENTER & NETWORK POINT OF PRESENCE PLANNED DATA CENTER & NETWORK POINT OF PRESENCE NETWORK POINT OF PRESENCE IPv4/IPv6 dual stack Global DNS Global DDOS Mitigation Global Internet Exchanges & Peering

Useful Links go here to learn more and get smart, fast! https://engage.vevent.com/index.jsp?eid=556&ecid=66663 SoftLayer Fundamentals Training webcast replays Eleven separate 60 min models; Lessons 5 - Keep safe securing your SoftLayer virtual instances and a replay of this presentation http://blog.softlayer.com/2014/softlayer-security-questions-and-answers SoftLayer Security: Questions and Answers (SoftLayer Blog post - Darrel Haswell) https://www.youtube.com/watch?v=t9h2cxwcuva Lance Crosby, CEO SoftLayer IBM PartnerWorld Leadership Conference 2014 General Session https://www.youtube.com/user/softlayer Data center tours DAL05, Amsterdam Power and network videos www.softlayer.com/datacenters Information about all data centers www.softlayer.com/networks Information about networks including transit, peering status http://lg.softlayer.com Looking glass full visibility into network connections, status and latency http://sldn.softlayer.com SoftLayer Developer Network Home of all the documentation you need for leveraging the SoftLayer API http://knowledgelayer.softlayer.com/ SoftLayer Knowledgelayer, your single stop for learning more about all things SoftLayer. http://www.softlayer.com/press/release/2122/ Press release: Gaming companies flock to SoftLayer s cloud, adding to 130 million players worldwide 11

Thank You! 12

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information