Cloud Computing Security Management and Compliance

The main subject of this section are security guidelines in cloud computing environments as recommended by European Network & Information Security Agency (ENISA) as well as security compliance standards applied in different industries.

Topics such as

• European Network & Information Security Agency (ENISA) - Guidelines for Cloud Computing
• Virtualization and storage management security aspects
• Information Security Management
• Security standars and audit frameworks: SAS 70, SysTrust, WebTrust, ISO27001, COBIT, Sarbanes-Oxley, PCI-DSS, HIPAA

and more can be found in this series.

CONTENTS:

• CCSK - A High Level Overview over ENISA Whitepaper
• CCSK - ENISA – Suggestions for Addition
• Virtualization and Security
• Storage Management and Security
• Information Security Management
• Security Auditing – Statement On Auditing Standards (SAS) 70 Type II
• Security Auditing – SysTrust
• Security Auditing – Other Audit Frameworks and Security Requirements: WebTrust, ISO27001 and COBIT
• Security Auditing – Common Industry Regulatory Requirements: Sarbanes-Oxley, PCI DSS and HIPAA