Auditing Cloud Computing: A Security and Privacy Guide

By Ben Halpert

The auditor's consultant to making sure right protection and privateness practices in a cloud computing environment

Many corporations are reporting or projecting an important fee reductions by utilizing cloud computing—utilizing shared computing assets to supply ubiquitous entry for agencies and finish clients. simply as many corporations, in spite of the fact that, are expressing obstacle with defense and privateness concerns for his or her organization's information within the "cloud." Auditing Cloud Computing presents useful counsel to construct a formal audit to make sure operational integrity and patron information safeguard, between different points, are addressed for cloud established resources.

  • Provides worthy assistance to make sure auditors deal with protection and privateness elements that via a formal audit promises a distinct point of coverage for an organization's resources
  • Reveals potent equipment for comparing the safety and privateness practices of cloud services
  • A cloud computing reference for auditors and IT safeguard execs, in addition to these getting ready for certification credentials, equivalent to qualified info structures Auditor (CISA)

Timely and sensible, Auditing Cloud Computing expertly offers info to help in getting ready for an audit addressing cloud computing safeguard and privateness for either companies and cloud established provider providers.

Show description

Quick preview of Auditing Cloud Computing: A Security and Privacy Guide PDF

Similar Computing books

Recoding Gender: Women's Changing Participation in Computing (History of Computing)

This present day, ladies earn a comparatively low percent of computing device technological know-how levels and carry proportionately few technical computing jobs. in the meantime, the stereotype of the male "computer geek" seems all over the place in pop culture. Few humans be aware of that ladies have been an important presence within the early a long time of computing in either the us and Britain.

PHP and MySQL for Dynamic Web Sites: Visual QuickPro Guide (4th Edition)

It hasn't taken internet builders lengthy to find that after it involves growing dynamic, database-driven sites, MySQL and personal home page offer a successful open-source mix. upload this booklet to the combination, and there is no restrict to the strong, interactive sites that builders can create. With step by step directions, entire scripts, and specialist find out how to consultant readers, veteran writer and database dressmaker Larry Ullman will get down to enterprise: After grounding readers with separate discussions of first the scripting language (PHP) after which the database software (MySQL), he is going directly to conceal safety, periods and cookies, and utilizing extra internet instruments, with a number of sections dedicated to growing pattern functions.

Game Programming Algorithms and Techniques: A Platform-Agnostic Approach (Game Design)

Online game Programming Algorithms and strategies is an in depth assessment of some of the very important algorithms and strategies utilized in online game programming this day. Designed for programmers who're conversant in object-oriented programming and easy facts buildings, this booklet makes a speciality of useful techniques that see genuine use within the video game undefined.

Guide to RISC Processors: for Programmers and Engineers

Info RISC layout ideas in addition to explains the diversities among this and different designs. is helping readers collect hands-on meeting language programming event

Extra info for Auditing Cloud Computing: A Security and Privacy Guide

Show sample text content

Com/cloud-security/cloud-security-basics-disaster-recovery-and-auditcapabilities (accessed June 30, 2010), 2. REFERENCES Badger, Lee, and Tim Grance. 2010. ‘‘Standards Acceleration to Jumpstart Adoption of Cloud Computing (SAJACC). ’’ Presentation on the nationwide Institute of criteria and know-how [NIST] Cloud Computing Workshop, could 20, 2010. Washington, DC: NIST. http://csrc. nist. gov/groups/SNS/cloud-computing/ index. html (accessed August sixteen, 2010). Blackley, Bob. 2009. ‘‘Data Availability within the Cloud. ’’ Burton staff learn document. Midvale, UT: Burton team. Blum, Dan. 2009. ‘‘Cloud Computing safety within the firm. ’’ Burton workforce study record. Midvale, UT: Burton staff. Blum, Dan. 2010. ‘‘Developing a Cloud Computing defense technique. ’’ Burton team examine document. Midvale, UT: Burton crew. Brodkin, Jon. 2008. Gartner: Seven Cloud-Computing defense hazards. www . infoworld. com/print/36853 (accessed June 30, 2010). Burton, Andrew. 2010. Cloud Backup Neglects restoration and protection valuable for real Cloud catastrophe restoration. http://searchdisasterrecovery. techtarget . com/generic/0,295582,sid190_gci1378775_mem1,00. html (accessed June 30, 2010). Hathaway, Melissa. 2010. past Availability: Melissa Hathaway at the Cloud. http://belfercenter. ksg. harvard. edu/publication/20250/beyond_availability. C07 06/09/2011 11:55:12 web page 141 References & 141 html? breadcrumb¼%2Fexperts%2F2132%2Fmelissa_hathaway (accessed August sixteen, 2010). Higgins, Kelly Jackson. 2009. The 6 Worst Cloud safeguard blunders. www . darkreading. com/securityservices/security/management/showArticle. jhtml? articleID¼217702062&queryText¼Theþ6þWorstþCloud (accessed August sixteen, 2010). info platforms Audit and keep watch over organization (ISACA). 2010. 2010 CISA evaluate path, bankruptcy 6: enterprise Continuity and catastrophe restoration (presentation slides). Rolling Meadows, IL: ISACA. Mell, Peter, and Tim Grance. 2009. ‘‘Effectively and Securely utilizing the Cloud Computing Paradigm. ’’ Presentation on the nationwide Institute of criteria and know-how [NIST] Cloud Computing Workshop, may well 20, 2010. Washington, DC: NIST. http://csrc. nist. gov/groups/SNS/cloud-computing/index. html (accessed August sixteen, 2010). Nicholson, John L. , and Wayne C. Matus. 2009. ‘‘Choosing a secure route to the Clouds. ’’ Pillsbury Winthrop Shaw Pittman LLP record. www. lexology. com/library/detail . aspx? g¼8abcddc4-d3ae-4fc4-a7ff-716ac3893dee (accessed August sixteen, 2010). Reeves, Drue. 2010. ‘‘Building a fantastic Cloud Adoption process: luck by way of layout. ’’ Burton team learn document. Midvale, UT: Burton crew. Reeves, Drue. 2010. ‘‘Cloud Computing Tiered structure. ’’ Burton workforce Reference structure Template. Midvale, UT: Burton crew. Simon, Norman C. , Samantha V. Ettari, and Brendan M. Schulman. 2010. ‘‘Cloud Computing: possibilities and matters. ’’ Kramer Levin Naftalis & Frankel LLP document. www. lexology. com/library/detail. aspx? g¼91783e55-7831-405c-8a11a2531ce93b18 (accessed August 10, 2010). Stokes, Jon. 2010. Will the Cloud Have its personal Deepwater Horizon catastrophe? http:// arstechnica.

Download PDF sample

Rated 4.05 of 5 – based on 43 votes