Cloud Security Takeaways from the 8th Annual IMN Data Center & Cloud Infrastructure Fall Forum
- SingleHop News & Events
- Favian Raygoza
For those of you who missed it, SingleHop was invited to the 8th Annual IMN Fall Forum on Data Centers & Cloud Infrastructure Services to talk about all things security in the cloud and data center. If you were not able to attend and see my panel discussion on security trends, worry not, for I’ve highlighted a couple of the top takeaways in this post. And hopefully, you’ll find these talking points to be helpful to you and your organization when planning your cloud security strategy.
The Unknown Within Your Home
The biggest theme of the session centered around a simple question: What keeps you awake at night? Specifically, what keeps your security guy awake at night when talking about cloud environments.
The important point to discuss here is that there are a multitude of threats that are going to fly at you on a daily basis. The threat landscape is massive. However, as SingleHop’s senior security engineer, that’s not what keeps me awake at night. What keeps me awake at night is not having oversight over the information systems that make up my infrastructure. Because let’s face it, if I don’t know what my infrastructure is talking to or doing, my job becomes futile.
The true fear for a security guy is not merely the unknown but the unknown within my home. In that sense, guys likes me spend extraordinary amounts of time building systems that will capture network forensic traffic, metrics and system logs. The best way to respond to a threat is to know every square inch of your infrastructure and to have the data to pull from and rely on.
Compliance & Cloud are Not at Odds
Another great takeaway: Compliance and the cloud! Yes, they can co-exist in the cloud. It’s been done by some of the most reputable organizations on the planet. The important consideration here is to build with compliance frameworks as the baseline, from the ground up.
Too often, we see companies build out systems and state, “well, let’s consider security later once we can get everything built and working on its own. Then we will come back and tighten down for security.” Doing so, often feels like an uphill struggle. When you look to build your cloud environment, before beginning any work, it’s important to first identify what security framework will best apply to you. Then start looking at the architecture required for that framework. Then collaboratively work with your talented teams to build that security into your information systems, from the ground up.
It was a great conference and I was very fortunate to sit on a panel with immensely talented individuals. If you get the chance to attend next year, I highly recommend you do so. The topics covered in each panel session cover the full spectrum of data center and cloud services solutions.
In the meantime, if you have questions regarding security and cloud architecture, our solutions engineers security experts are standing by with answers. Check out our managed security solutions page for more details.
Leave a Comment