Cloud Security

Cloud Security!  It sounds like such a cool and nebulous topic to the layman, but let's simplify the mystery and call it what it really is...someone else's computing resources that you rent or lease.  This can be presented in several methods including: infrastructure as a Service (IaaS), Platform as a Service (PaaS), Software as a Service (SaaS).  However, at the end of the day, it's your stuff on someone else's equipment with a shared responsibility model specifying what the vendor provides, what you provide, and what you are allowed and not allowed to do in order to verify the security posture of the investment.  Clearly, this model can present some concerning risks, but it also affords speed, agility, continuity and in some of the more maturely thought out cases, a lower total cost of ownership.

In Azure, AWS and GSuite the responsibility for security in the cloud is shared between the user and the Cloud Providers.

In most cloud vendor shared responsibility models cloud providers are responsible for:

• physical security of the hosts 

• physical network 

• network controls

• In the shared responsibility model, the responsibility for data governance depends on the service model

Below are links to three books that provide utility for those looking to dive deeper into this rabbit hole.