all about risk
all about risk
allaboutrisk.com
Sunday, 5th February, 2012
homeloginabout usabout usregister nowadd companysite map
vendor comparisonannual risk reportwhite papersvendor comparisonrisk eventsrisk jobsrisk newson the move
all about risk
all about risk
 
all about risk
enterprise-wide risk
credit risk
operational risk
market risk
trading risk
compliance risk
technology risk
risk analysis
all about risk
all about risk
all about risk
vendors
consultancy firms
service firms
associations
all about risk
all about risk
all about risk
Exact Match
all about risk
all about risk
Axway issues proactive cloud security guidelines to encourage companies to become cloud ready
09/Mar/2010
As part of its commitment to ongoing IT leadership,Axway, the Business Interaction Networks company, has issued its top three proactive considerations for cloud security.  Cloud computing is the CIO’s second-leading technology priority, as found in Gartner’s 2010 CIO Survey.  As organisations consider cloud benefits, however, they also must confront related security questions as data moves between cloud and on-premise environments.

Axway has developed key cloud data security considerations to enable proactive control of data security as IT processes move to the cloud:   ·         Revisit Cloud Security Expectations - Organisations must have the same expectations for data security in the cloud as for on-premise and expect vendors to work with them to meet these expectations.  Cloud security strategies to date have remained passive, largely consisting of directing organisations to ask questions of cloud providers about how they secure access to data.  Moreover, cloud providers often overlook internal data security, rather focusing merely on perimeter and data centre security.   ·         Leverage On-Premise “Command and Control” – Many cloud vendors only provide vague assurances of data centre perimeter security, but offer no guarantees on who can access sensitive customer data.  This means enterprises must be able to extend their internal access control and data loss prevention policies to cloud applications. Key considerations include: o    What type of information will be exposed in the cloud? Who can access it and how is it segregated between unsecured parties? o    Who has rights to send and receive sensitive information outside the organisation?  o    What data should be prevented from leaving the organisation to begin with? o    How should data be sent?  In the clear?  Or with policies to encrypt specific data?    ·         Consider ‘Private Cloud’ Models – Multi-tenant cloud applications can be inexpensive but do not assure the segregation of data, or the visibility required for corporate governance and regulatory compliance. Private, single tenant applications in the cloud can still offer many of the advantages of cloud computing, while limiting the security risk.   “Enterprises have spent years establishing effective internal security, but the rapid shift to cloud-based applications raises many challenges,” said Taher Elgamal, chief security officer at Axway. “Axway is leading the industry’s thinking on extending on-premise data security controls to the cloud, enabling enterprises to rest easier as their business interaction networks move to take advantage of cloud computing’s advantages.”
 
 
News Search
Keyword:
Risk Area:
Contract Wins
Click here rss to view more news
Archive
January 2012
December 2011
November 2011
October 2011
September 2011
August 2011
more...
 
 
 
Risk Home | Risk Vendor Directory | Risk Consultancy Directory | Risk Associations Directory | Risk Services Directory |
New Products | Risk Events | Annual Risk Report | On The Move | Risk Industry Resources | Contact Us | Site Map