From the course: Certificate of Cloud Security Knowledge (CCSK) Cert Prep
Join today to access over 25,500 courses taught by industry experts.
Assessing cloud services
From the course: Certificate of Cloud Security Knowledge (CCSK) Cert Prep
Assessing cloud services
- [Instructor] Assessing cloud risk needs a systemic approach. It begins with assessing the Cloud Service Environment. If you are to imagine it as a workflow, it would begin by functional business request, outlining what is needed from the cloud service provider. You would then review the potential cloud service provider's documentation. For example, you should reference the CSP security and privacy documentation, their SLAs regarding service availability, and contracts detailing roles and responsibilities. The documentation also includes terms of service, particularly those concerned with the conclusion of service. Reviewing external sources such as technology periodicals like Wired Magazine and reports produced by Gardner and Forrester can help determine a security posture and whether previous incidents have been adequately addressed. Next, an organization needs to align the appropriate compliance regimes it falls under. Recall that regulations are industry and practice specific. So…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.