This post covers some aspects of information security related to cloud services.
Cloud Security Components
On this section you can find different components that are relevant to cloud security.
A Cloud Access Security Broker (CASB) scans the security between on-premise devices and the cloud.
Secure Access Service Edge (SASE) integrates the security within the network.
Cloud Security Posture Management (CSPM) check that cloud configuration is safe enough. It is related to static security.
Cloud Workload Protection (CWP) or Cloud Workload Protection Platform (CWPP) helps to monitor security in a cloud. It is related to dynamic security.
Security Information Event Management (SIEM) collects logs from cloud, analyze data and triggers alerts or perform actions under certain circumstances.
Data Loss Prevention (DLP) provides controls to prevent or avoid the loss of data within an organization.
Information Rights Management (IRM) helps to protect the legal rights on intelectual property.
Cloud Security Standards
List of Cloud Security Standards:
- ISO/IEC 27017
- NIST SP 800-144
- NIST SP 500-29
NIST SP 800-53 is not directly related to cloud, but it is being adopted by some organizations in the context of cloud.
Cloud Security Organizations
Organizations related to Cloud Security:
- Cloud Security Alliance (CSA)
- Cyber Risk Institute
Cloud Security Resources
Cloud Control Matrix (CCM) by Cloud Security Alliance (CSA).
CIS Benchmarks for cloud
Cloud Security Tools
You can find cloud security tools on this post.
Cloud Security Certifications
Certified Cloud Security Professional (CCSP) by (ISC)2.