“Cloud security is simple, absolutely simple. Stop over complicating it.” This is how I kicked off a presentation I gave at the CyberRisk Alliance, Cloud Security Summit on Apr 17 of this year. And I truly believe that cloud security is simple, but that does not mean easy. You need the right strategy. As I…
Read More
Vendor lock-in has been an often-quoted risk since the mid-1990’s. Fear that by investing too much with one vendor, an organization reduces their options in the future. Was this a valid concern? Is it still today? The Risk Organizations walk a fine line with their technology vendors. Ideally, you select a set of…
Read More
A Changing Landscape In recent years we’ve seen a fundamental shift in the IT landscape, accelerated towards cloud and containerized infrastructures. According to Forbes, by 2020 it is predicted that 83 percent of enterprise workloads will be in the cloud. Moving beyond the cloud, software development teams are driving further change with the adoption of…
Read MoreBuild with confidence from marknca on Vimeo. As an app developer, you know that security is important, but sometimes you can lose perspective as to why it’s important. Your users trust that when they share their data with your app, it will be safe. That trust is critical to your success and to your users’…
Read MoreYou’re off to the cloud, and the first thing you run into before you can reach altitude is a wall. That wall is your organization’s security requirements. Fortunately, it’s easy to break through that wall when you understand how security works in the cloud. The Model We’re lucky because the model for security in any…
Read More
If you’re moving your computing needs to Azure, security is probably one of your top concerns. I’ve written about this before, so I’ll assume you’ve already read it. If not, it’s worth taking a few minutes to get a grounding. Operations Once you’ve got a solid understanding of the security model in place on Azure,…
Read More
Working in Microsoft Azure is exciting. Nowhere was this more evident than at TechEd 2014 – a whirlwind of new features, techniques and designs. Vibhor Kappor has a great summary up on the Azure blog that will help get you up to speed. While you’re reading the announcements, it’s important to keep in mind how security on…
Read MoreWith any public cloud, security is a shared responsibility between the cloud service provider and you, the user of those services. For IaaS offerings, this usually means the division of responsibilities is as follows: Cloud Service Provider You Facilities Physical security Network infrastructure Virtualization layer Operating system Applications Data If you’ve done work…
Read MoreMicrosoft recently held their annual Build conference. The premier developer event for Microsoft is usually quite predictable. You could safely expect a few incremental improvements in various technologies and fantastic developer sessions on current tech. See for yourself; the sessions are online from 2012 and 2013. Things were different this year. I’ll be addressing the…
Read More
