The fundamentals of best practices when it comes to security architecture has not changed, least privileges etc... What has changed is the notion of a "trusted network" when architecting in the cloud. You must assume that anyone with a computer attached to the internet can have some sort of access to your cloud environment, also you must have trust in your cloud provider because no mater the cloud service model IaaS, PaaS or SaaS that you choose the cloud provider will always have access to the hardware so you must architect with a "zero trust" model in mind. Depending on the cloud service model that you choose you must have an understanding of who has the security responsibility at each layer i.e. with PaaS the cloud provider is responsible for security patching the operating system. There must be an understanding of all the tools for purchase that will assist in a comprehensive security architecture solution, consideration of where your data will be located and if there is a disaster is there a plan for it and if so where is your data going to be transferred to? These are just a few considerations when it comes the proper cloud security architecture for your organization.
No matter your cloud provider, cloud service model IaaS, PaaS or SaaS, cloud type Public, Private Community or Hybrid or you're looking to standup your own virtualized environment in your own data center let Cloud Defenders help you architect a custom solution that will meet all of your regulatory, data security or privacy needs.
Copyright © 2019 Cloud Defenders Inc. - All Rights Reserved.