Upload File

security in the cloud - making it a safe prospect

33
© Crown Copyright. All rights reserved. Chris Ulliott Cloud Security Technical Director and Chief IA Architect, CESG

Upload: eduserv

Post on 18-May-2015

228 views

Category:

Technology


1 download

Report

Tags:

DESCRIPTION

A talk delivered by Chris Ulliott, Technical Director at GCHQ, at Cloud Control: Implementing cloud computing 2014, hosted by Civil Service World and Eduserv.

TRANSCRIPT

Page 1: Security in the cloud - making it a safe prospect

© Crown Copyright. All rights reserved.

Chris Ulliott

Cloud Security

Technical Director andChief IA Architect, CESG

Page 2: Security in the cloud - making it a safe prospect

this is

not new© Crown Copyright. All rights reserved.

Page 3: Security in the cloud - making it a safe prospect

understand yourrequirements

© Crown Copyright. All rights reserved.

Page 4: Security in the cloud - making it a safe prospect

value your

data© Crown Copyright. All rights reserved.

Page 5: Security in the cloud - making it a safe prospect

principles14

© Crown Copyright. All rights reserved.

Page 6: Security in the cloud - making it a safe prospect

data in transitresilience

separation

governanceoperational

personnel

devsupply chain

management

ID&Ainterface protection

administration

audit

user responsibilities

© Crown Copyright. All rights reserved.

Page 7: Security in the cloud - making it a safe prospect

understand theservice offering

© Crown Copyright. All rights reserved.

Page 8: Security in the cloud - making it a safe prospect

(I/P/S)aaS

© Crown Copyright. All rights reserved.

Page 9: Security in the cloud - making it a safe prospect

public

community

private

or

© Crown Copyright. All rights reserved.

Page 10: Security in the cloud - making it a safe prospect

data intransitprotection

© Crown Copyright. All rights reserved.

Page 11: Security in the cloud - making it a safe prospect

assetprotection& resilience

© Crown Copyright. All rights reserved.

Page 12: Security in the cloud - making it a safe prospect

separationbetweencustomers

© Crown Copyright. All rights reserved.

Page 13: Security in the cloud - making it a safe prospect

governance

© Crown Copyright. All rights reserved.

Page 14: Security in the cloud - making it a safe prospect

operationalsecurity

© Crown Copyright. All rights reserved.

Page 15: Security in the cloud - making it a safe prospect

personnelsecurity

© Crown Copyright. All rights reserved.

Page 16: Security in the cloud - making it a safe prospect

securedevelopment

© Crown Copyright. All rights reserved.

Page 17: Security in the cloud - making it a safe prospect

supply chainsecurity

© Crown Copyright. All rights reserved.

Page 18: Security in the cloud - making it a safe prospect

secureconsumermanagement

© Crown Copyright. All rights reserved.

Page 19: Security in the cloud - making it a safe prospect

ID&A

© Crown Copyright. All rights reserved.

Page 20: Security in the cloud - making it a safe prospect

externalinterfaceprotection

© Crown Copyright. All rights reserved.

Page 21: Security in the cloud - making it a safe prospect

secureserviceadmin.

© Crown Copyright. All rights reserved.

Page 22: Security in the cloud - making it a safe prospect

auditinformationprovision tocustomers

© Crown Copyright. All rights reserved.

Page 23: Security in the cloud - making it a safe prospect

secure useby theconsumer

© Crown Copyright. All rights reserved.

Page 24: Security in the cloud - making it a safe prospect

getassurance

© Crown Copyright. All rights reserved.

Page 25: Security in the cloud - making it a safe prospect

assertion

© Crown Copyright. All rights reserved.

Page 26: Security in the cloud - making it a safe prospect

contractual

© Crown Copyright. All rights reserved.

Page 27: Security in the cloud - making it a safe prospect

independentvalidation ortesting

© Crown Copyright. All rights reserved.

Page 28: Security in the cloud - making it a safe prospect

assurancein the

design© Crown Copyright. All rights reserved.

Page 29: Security in the cloud - making it a safe prospect

assuredcomponents

© Crown Copyright. All rights reserved.

Page 30: Security in the cloud - making it a safe prospect

alternative

mitigations

© Crown Copyright. All rights reserved.

Page 31: Security in the cloud - making it a safe prospect

? accept the residual

risk© Crown Copyright. All rights reserved.

Page 32: Security in the cloud - making it a safe prospect

get the details at:https://www.gov.uk

/government/collections

/cloud-security-guidance

© Crown Copyright. All rights reserved.

Page 33: Security in the cloud - making it a safe prospect

?Questions

© Crown Copyright. All rights reserved.


The Cloud Beckons, But is it Safe?

Safe Swiss Cloud: Swiss Enterprise Cloud since 2012

IT security - keeping money and data safe - SRA · 2019. 8. 2. · resilience. 10 Web and cloud providers may advertise their ability to withstand DDoS attacks. The prospect of these

Cloud-Security-Keeping-Data-Safe-Protiviti - white paper

Best Practices for Prospect Management, Prospect …...Best Practices for Prospect Management, Prospect Contacts and Prospect Proposals in Banner Advancement Ohio Banner Users Group

Cloud - Everyone is doing it, But is it safe?

Staying safe in the cloud

Cloud CCTV Storage - Avaiden System · 2020. 4. 3. · Home & SME Cloud Surveillance Safe City Cloud Surveillance Intelligent Traffic Surveillance Web-based cloud storage and video

Prospect Management Prospect Management – Table of Contents

Archive data in the largest private cloud with HPE Digital Safe

Safe code CSA cloud final1213

Winning audience plans - Oracle · 12 Oracle Data Cloud Winning audience plans Oracle Data Cloud Winning audience plans 13 3 Existing customers Prospect customers Tailor your message

Automating Security for the Cloud - Make it Easy, Make it Safe

One safe cloud for collaboration and teamwork

Younited for Business - Discover the most private and safe Cloud around

Zones manages safe, fast, and seamless cloud-to-cloud ...media.zones.com/images/pdf/zones-o365-cloud-to-cloud-migration.pdf · cloud-to-cloud Office 365 migration Zones Case Study

Prospect for radar and lidar cloud assimilation - ECMWF · PDF fileECMWF Seminar on the Use of Satellite Observations in NWP, 8–12 September 2014 1 Prospect for radar and lidar cloud

SAFE: SDN-Assisted Framework for Edge–Cloud Interplay in ... · 17/7/2019  · for Edge–Cloud Interplay in Secure Healthcare Environment (SAFE). B. Contribution To mitigate the

©2013 ATScloud What Makes A Good Cloud Prospect? What Makes a Good Cloud Prospect? Malcolm Wells ATScloud Partner Development Director

[INFOGRAPHIC] Is Cloud Based File Synchronization Safe?

How to be safe in the cloud - Aalto University Wiki · 2014-01-09 · How to be safe in the cloud • “Facts” about NSA/Snowden/Prism • data classification Guideline to Safe

Oracle Communications User Data Repository Cloud Disaster ... Cloud DR.pdfappropriate fail-safe, backup, redundancy, and other measures to ensure its safe use. Oracle Corporation and

Build Your Application in a Cloud. Make It Safe! Deadline? …files.informatandm.com/uploads/2018/10/Build_Your... · 2018-10-14 · Build Your Application in a Cloud. Make It Safe!

New Era of Aviation + FME Cloud = Safe Skies

Prospect Relativity 1 Running Head: PROSPECT RELATIVITY

Is the Cloud Safe? Cloud Computing, Security, and Data Sovereignty

Everyone is talking Cloud - How safe is your data?

The Research and Prospect of Secure Data Access · PDF fileThe Research and Prospect of Secure Data Access Control in Cloud Storage ... Index Terms—Data security, cryptography, cloud

Connelly's Safe & Sound Home Inspections, LLC. 1923 ... · Connelly's Safe & Sound Home Inspections, LLC. 1923 Prospect Ridge Boulevard Haddon Heights, NJ 08035 1 (856) 310-1991 Campanella,

Feeling safe in the cloud

WFS Safe Return To Sport - Cloud Object Storage

4B - Is the cloud safe - Ed Zedlewski

Fast, Safe, Repeatable Multi-Cloud

Cloud Security Keeping Data Safe in the Boundaryless World ... · Cloud Security – Keeping Data Safe in the “Boundaryless” World of Cloud Computing . Executive Summary . As

Safe harbor in the cloud with encryption and key management - Porticor