In the recent episodes of the Cloud Fundamentals Video Series - focuses on "Benchmarks and Evaluation Standards for Cloud Computing Security," a topic that is top of mind for many organizations that are evaluating the potential uses of this new computing paradigm.
Laura Posey, a Senior Security Strategist in Trustworthy Computing at Microsoft, has been involved in this process. Please watch this latest video in the Trustworthy Computing Cloud Fundamentals Video Series where he discuss standards for cloud computing security with Laura.
Tim Rains, director, Trustworthy Computing, notes that most companies benefit from standard evaluation criteria for the providers of cloud services - "Benchmarks and evaluation standards for cloud computing security is a topic that is top of mind for many organizations that are evaluating the potential uses of this new computing paradigm," he explains.
Customers are also interested in finding a manner in which they can communicate potential risks to both internal and external auditors, Tim explains. For example, some of them are planning the use of the European Network and Information Security Agency's (ENISA's) set of evaluation criteria designed for cloud services providers.
The Benefits of Industry Collaboration to Cloud Computing Security:
Security industry associations are a very important part of the computing ecosystem. Among other things they provide education, training and certification for security professionals, develop and share benchmarks and security best practices, provide forums, events and conferences for security professionals to meet, exchange information, and network with their peers.
"each day, a growing number of companies decide to leverage cloud computing for important business activities. There is an immediate and compelling mandate for all of us to become better informed as to how cloud computing functions, its key benefits and considerations to establishing trust. CSA is committed to building the trusted cloud ecosystem and we salute Microsoft's efforts to both build robust and secure cloud services as well as offering a cloud educational series in the public interest," said Jim Reavis, the Founder and Executive Director of the CSA.
Cloud Transparency as an Element of Trust:
Cloud customers are ultimately responsible for ensuring they meet the compliance obligations that apply to them. Subsequently cloud providers need to provide a level of transparency that helps their customers maintain compliance, but in a way that minimizes disruptions to operations and keeps costs low.
Mark provides more context and detail in this video: