What Is The Cloud And How Can Your Agency Use It. Tom Konop Mark Piontek Cathleen Christensen

Similar documents
Cloud Computing; What is it, How long has it been here, and Where is it going?

Daren Kinser Auditor, UCSD Jennifer McDonald Auditor, UCSD

Cloud Computing. What is Cloud Computing?

Virginia Government Finance Officers Association Spring Conference May 28, Cloud Security 101

Security Issues in Cloud Computing

Cloud Services Overview

Cloud Computing-A Tool For Future

What Cloud computing means in real life

About me & Submission details

AskAvanade: Answering the Burning Questions around Cloud Computing

Data In The Cloud: Who Owns It, and How Do You Get it Back?

CLOUD COMPUTING INTRODUCTION HISTORY

Cloud Computing: What needs to Be Validated and Qualified. Ivan Soto

Managing Cloud Computing Risk

Clinical Trials in the Cloud: A New Paradigm?

Cloud Computing Flying High (or not) Ben Roper IT Director City of College Station

White Paper on CLOUD COMPUTING

LEGAL ISSUES IN CLOUD COMPUTING

Information Security: Cloud Computing

Cloud Computing. Bringing the Cloud into Focus

OWASP Chapter Meeting June Presented by: Brayton Rider, SecureState Chief Architect

Bringing the Cloud into Focus. A Whitepaper by CMIT Solutions and Cadence Management Advisors

Securing and Auditing Cloud Computing. Jason Alexander Chief Information Security Officer

Cloud Computing demystified! ISACA-IIA Joint Meeting Dec 9, 2014 By: Juman Doleh-Alomary Office of Internal Audit

The cloud - ULTIMATE GAME CHANGER ===========================================

Cloud Computing. Karan Saxena * & Kritika Agarwal**

Private vs. Public Cloud Solutions

See Appendix A for the complete definition which includes the five essential characteristics, three service models, and four deployment models.

The Cloud. JL Cabrera LTEC 4550

Cloud models and compliance requirements which is right for you?

10/25/2012 BY VORAPOJ LOOKMAIPUN CISSP, CISA, CISM, CRISC, CEH Agenda. Security Cases What is Cloud? Road Map Security Concerns

Outline. What is cloud computing? History Cloud service models Cloud deployment forms Advantages/disadvantages

Cloud Security and Managing Use Risks

Cloud for Credit Unions Leveraging New Solutions to Increase Efficiency & Reduce Costs Presented by: Hugh Smallwood, Chief Technology Officer

NETWORK ACCESS CONTROL AND CLOUD SECURITY. Tran Song Dat Phuc SeoulTech 2015

Cloud definitions you've been pretending to understand. Jack Daniel, Reluctant CISSP, MVP Community Development Manager, Astaro

Cloud Infrastructure Security

Top 10 Cloud Risks That Will Keep You Awake at Night

INTRODUCTION TO CLOUD COMPUTING CEN483 PARALLEL AND DISTRIBUTED SYSTEMS

The Cloud is Not Enough Why Hybrid Infrastructure is Shaping the Future of Cloud Computing

Legal Issues in the Cloud: A Case Study. Jason Epstein

Validation of a Cloud-Based ERP system, in practice. Regulatory Affairs Conference Raleigh. 8Th September 2014

Cloud Computing and HIPAA Privacy and Security

The agile Cloud Brokerage approach. An innovative, business aligned and mature IT services delivery model!

Cloud Computing and Records Management

CLOUD COMPUTING OVERVIEW

Module 1: Facilitated e-learning

Cloud Computing for SCADA

How to ensure control and security when moving to SaaS/cloud applications

The Magical Cloud. Lennart Franked. Department for Information and Communicationsystems (ICS), Mid Sweden University, Sundsvall.

Security Challenges of Cloud Providers ( Wie baue ich sichere Luftschlösser in den Wolken )

OVERVIEW Cloud Deployment Services

Cloud Computing Technology

Security & Trust in the Cloud

SMS. Cloud Computing. Systems Management Specialists. Grupo SMS option 3 for sales

Cloud Computing TODAY S TOPICS WHAT IS CLOUD COMPUTING? ICAC Webinar Cloud Computing September 4, What Cloud Computing is and How it Works

Identity & Access Management The Cloud Perspective. Andrea Themistou 08 October 2015

Security Considerations for Public Mobile Cloud Computing


CLOUD COMPUTING GUIDELINES FOR LAWYERS

IS PRIVATE CLOUD A UNICORN?

Enterprise Governance and Planning

Legal Issues Associated with Cloud Computing. Laurin H. Mills May 13, 2009

Technology & Business Overview of Cloud Computing

CLOUD COMPUTING. When It's smarter to rent than to buy

How To Choose A Cloud Computing Solution

Quick guide: Using the Cloud to support your business

2011 Morrison & Foerster LLP All Rights Reserved mofo.com. Risk, Governance and Negotiation in the Cloud: Capture Benefits and Reduce Risks

Information Technology: This Year s Hot Issue - Cloud Computing

Cloud Computing and Security Risk Analysis Qing Liu Technology Architect STREAM Technology Lab

East African Information Conference th August, 2013, Kampala, Uganda. Security and Privacy: Can we trust the cloud?

Where in the Cloud are You? Session Thursday, March 5, 2015: 1:45 PM-2:45 PM Virginia (Sheraton Seattle)

Cloud Computing Safe Harbor or Wild West?

Running head: TAKING A DEEPER LOOK AT THE CLOUD: SOLUTION OR 1

A white paper from Fordway on CLOUD COMPUTING. Why private cloud should be your first step on the cloud computing journey - and how to get there

Service Models. Chapter Three

20 th Year of Publication. A monthly publication from South Indian Bank.

The Private Cloud Your Controlled Access Infrastructure

Electronic Records Storage Options and Overview

Public Clouds. Krishnan Subramanian Analyst & Researcher Krishworld.com. A whitepaper sponsored by Trend Micro Inc.

6 Cloud computing overview

Cloud Computing. Chapter 1 Introducing Cloud Computing

Incident Handling in the Cloud and Audit s Role

Transcription:

What Is The Cloud And How Can Your Agency Use It Tom Konop Mark Piontek Cathleen Christensen

Video Computer Basics: What is the Cloud

What is Cloud Computing

Cloud Computing Basics The use of the word cloud tries to describe two essential concepts Abstraction Virtualization

Abstraction System details hidden from users Physical systems aren t specified Administration is outsourced to others Data is stored in unknown locations Access by users is ubiquitous (everywhere)

Virtualization Resources are pooled and shared Storage provided from centralized infrastructure Pay-as-you-use model Allows multiple tenants Scalable & agile

Types of Clouds Private, Public, Community, Hybrid Private Private Private Private Cloud Infrastructure operated solely for a single organization

Types of Clouds Private, Public, Community, Hybrid Public Public Cloud Applications, Storage and other resources are made available to the general public by a service provider.

Types of Clouds Private, Public, Community, Hybrid Community Community Cloud Shares information between several organizations from a specific community with common concerns.

Types of Clouds Private, Public, Community, Hybrid Public Private Hybrid Cloud Composition of two or more clouds (private, community or public) that remain unique entities but are bound together.

Structure of Cloud Offerings as a Service many options and opportunities DaaS Data as a Service STaaS Storage as a Service SaaS Software as a Service NaaS Network as a Service PaaS Platform as a Service IaaS Infrastructure as a Service SECaaS Security as a Service DBaaS Database as a Service TEaaS Test Environment as a Service

Structure of Cloud Offerings as a Service many options and opportunities XaaS Anything as a Service

Cloud Computing Features Elasticity The ability to right-size resources as required by your application.

Cloud Computing Features Scalability Access to unlimited computer resources as needed.

Cloud Computing Features Utility Model A pay-as-you-use model matches resources to need on a continuous basis which eliminates and shifts risk from the client to the service provider.

Cloud Computing Features Low Barrier to Entry Gaining access to systems only requires a small investment.

Cloud Computing Advantages Beyond the inherit cloud computing features of elasticity, scalability, and cost other advantages include

Cloud Computing Advantages Redundancy Depending on your cloud service provider your services are replicated across multiple data centers.

Cloud Computing Advantages Convenience Access to systems and/or data anywhere you can connect to the internet.

Cloud Computing Advantages Security Most cloud service providers use industrial level security software and practices.

Cloud Computing Advantages IT Infrastructure Management of on-site hardware and software is minimized reducing need for specialized IT expertise.

Cloud Computing Disadvantages Security Cloud service providers are bigger targets for malicious groups.

Cloud Computing Disadvantages Internet Access Cloud computing makes your business dependent on the reliability of your internet connection.

Cloud Computing Disadvantages Cost Understand the cost of both models (Cloud vs. In-house).

Cloud Computing Disadvantages Inflexibility Are you locking yourself into proprietary applications or formats. If so understand your requirements.

Cloud Computing Disadvantages Support In most cases you are adding another layer between your infrastructure and application.

Cloud layers Cloud Client Web Browser, Mobile App, Thin Client SaaS Application PaaS Platform IaaS Infrastructure With SaaS you don t buy the software. You buy the use of the service. Google Apps or Netflix Operating systems and databases are predefined. Typically tool set for development. Windows Azure to develop mobile apps, social apps Hardware only. You install operating system, databases.

E & O and Security In The Cloud Mary Hauri Greg Kirsch Barb Van Herwaarden

Let s Look at 5 Key Areas For The Protection Of Your Business Regulatory compliance Data location and Data segregation Disaster Recovery User access control Security Sources: InfoWorld, Cisco,

Regulatory compliance Customers ultimately responsible for security and integrity of their own data Traditional service providers are subjected to external audits and security certifications Choose reputable cloud computing providers

Regulatory compliance Consider Cyber Liability Policies Ponemon Institute estimates the cost for a breach up to $216 per customer.

Data location Do you know where your data is? Questions to ask your providers: Will they commit to specific jurisdictions for storage & processing? Make a contractual commitment to obey privacy requirements?

Data segregation Shared environment with other customers Encryption is effective but isn't a cure-all

Disaster Recovery Understand what happens to your data What is your cloud provider s disaster plan?

User access control Your data is accessible by cloud provider s employees Who s managing your data?

Cloud Computing Security 10 Tips For Keeping Your Cloud Data Safe 1. Password First. 2. Security Question, Check. 3. Try Out Encryption. 4. Manage Passwords. 5. Two Factor Authentication.

Cloud Computing Security 10 Tips For Keeping Your Cloud Data Safe 6. Don t Think, Just Backup. 7. Delete When Done. 8. Be Careful Where You Log In. 9. Use Anti-Virus and Anti-Spy Software. 10. Keep Your Mouth Shut. Source: Cloud Tweaks http://www.cloudtweaks.com/2012/10/cloud-computing-security-10-tips-forkeeping-your-cloud-data-safe/

Security Internal clouds are not inherently secure Companies lack security visibility and risk awareness Sensitive information needs safer storage. Apps aren t secure Authentication and authorization must be more robust. Still need to protect the devices accessing the cloud, e.g., desktops and mobile devices.

Security areas you need to be aware of with your Cloud Provider Physical Security Insider Abuse Data Encryption Third party relationships Network Security Virtualization Security Access Controls Application Security

Final thoughts Do Your Homework!! Understand Service Level Agreements (SLAs) Ask the right questions

Security

QUESTIONS???

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information