Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Cloud Security Handbook

You're reading from   Cloud Security Handbook Find out how to effectively secure cloud environments using AWS, Azure, and GCP

Arrow left icon
Product type Paperback
Published in Apr 2022
Publisher Packt
ISBN-13 9781800569195
Length 456 pages
Edition 1st Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Eyal Estrin Eyal Estrin
Author Profile Icon Eyal Estrin
Eyal Estrin
Arrow right icon
View More author details
Toc

Table of Contents (19) Chapters Close

Preface 1. Section 1: Securing Infrastructure Cloud Services
2. Chapter 1: Introduction to Cloud Security FREE CHAPTER 3. Chapter 2: Securing Compute Services 4. Chapter 3: Securing Storage Services 5. Chapter 4: Securing Networking Services 6. Section 2: Deep Dive into IAM, Auditing, and Encryption
7. Chapter 5: Effective Strategies to Implement IAM Solutions 8. Chapter 6: Monitoring and Auditing Your Cloud Environments 9. Chapter 7: Applying Encryption in Cloud Services 10. Section 3: Threats and Compliance Management
11. Chapter 8: Understanding Common Security Threats to Cloud Services 12. Chapter 9: Handling Compliance and Regulation 13. Chapter 10: Engaging with Cloud Providers 14. Section 4: Advanced Use of Cloud Services
15. Chapter 11: Managing Hybrid Clouds 16. Chapter 12: Managing Multi-Cloud Environments 17. Chapter 13:Security in Large-Scale Environments 18. Other Books You May Enjoy

Why we need security

As mentioned previously, we can see clear benefits of using cloud services that enable our business to focus on what brings us value (from conducting research in a pharmaceutical lab, to selling products on a retail site, and so on).

But what about security? And, specifically, cloud security?

Why should our organization focus on the overhead called information security (and, in the context of this book, cloud security)?

The cloud has changed the paradigm of organizations controlling their data on-premises (from HR data to customers' data) and investing money in maintaining data centers, servers, storage, network equipment, and the application tier.

Using public clouds has changed the way organizations look at information security (in the context of this book, cloud security).

The following are a few common examples of the difference between on-premises data solutions and the cloud:

Table 1.1 – Differences between on-premises data solutions and the cloud

Table 1.1 – Differences between on-premises data solutions and the cloud

Organizations are often unwilling to migrate to a public cloud for security reasons because the physical servers are located outside of the organization's direct control, and sometimes even outside their physical geography.

Here are a few questions often asked by organizations' management:

  • Are my servers going to behave the same as if they were on-premises?
  • How do I protect my servers outside my data center from a data breach?
  • How do I know the cloud provider will not have access to my data?
  • Do my employees have enough knowledge to work in new environments such as the public cloud?

Perhaps the most obvious question asked is – is the public cloud secure enough to store my data?

From my personal experience, the answer is yes.

By design, the hyper-scale cloud providers invest billions of dollars protecting their data centers, building secure services, investing in employee training, and locating security incidents and remediating them fast. This is all with much higher investment, attention, and expertise than most organizations can dedicate to protecting their local data centers.

The reason for this is simple – if a security breach happens to one of the hyper-scale cloud providers, their customers' trust will be breached, and the cloud providers will run out of business.

At the end of the day, cloud security enables our organization to achieve (among other things) the following:

  • Decreased attack surface: Using central authentication, data encryption, DDoS protection services, and more
  • Compliance with regulation: Deploying environments according to best practices
  • Standardization and best practices: Enforcing security using automated tools and services

Reading this book will allow you to have a better understanding of various methods to secure your cloud environments – most of them using the cloud vendor's built-in services and capabilities.

You have been reading a chapter from
Cloud Security Handbook
Published in: Apr 2022
Publisher: Packt
ISBN-13: 9781800569195
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image