Defining Security Protocols
It’s likely you work in an organization where employees are using cloud services either with or without corporate permission. With bring-your-own-device (BYOD), mobility and the temptation of so-called shadow IT resources, the days of the clearly defined network perimeter are gone. Yet as the CISO, you still need to secure infrastructure, data and applications as if they were safely inside your firewalls.
In this short video, G. Mark Hardy, president of the National Security Corporation, explains why a defined protocol for cloud application security can help you better protect your organization.
Establishing Cloud Security Operations
Taking the time to set up the legal and business guidelines that will govern your cloud application security operations can pay off down the road. One option is to establish a single, integrated team that is responsible for IT security, called a security operations center (SOC).
If you are thinking about setting up an SOC in your organization, check out this on-demand webinar featuring a presentation from Hardy. He offered practical guidelines that will save you time and money in the long run.
Cloud environments present both unique IT outsourcing opportunities and considerable cloud security challenges that promise to change the economics of how you manage your resources. You can start small by moving only parts of your security capabilities to the cloud, such as log collection and compliance reporting, and later even outsource the management and monitoring of threat detection to a managed services provider.
Digital Strategy, IBM Security
Stephanie is the Program Director for Security Intelligence, where she leads strategy and operations for the award-winning IBM Security blog. She's passionat...