Tag Archives: cto

Securing Access to the Cloud with Security as a Service (SECaaS)

What Is Security for Cloud Computing?

“Security controls in cloud computing are, for the most part, no different than security controls in any IT environment. However, because of the cloud service models employed, the operational models, and the technologies used to enable cloud services, cloud computing may present different risks to an organization than traditional IT solutions.

Cloud computing is about gracefully losing control while maintaining accountability even if the operational responsibility falls upon one or more third parties.

One of the attractions of cloud computing is the cost efficiencies afforded by economies of scale, reuse, and standardization. To bring these efficiencies to bear, cloud providers have to provide services that are flexible enough to serve the largest customer base possible, maximizing their addressable market. Unfortunately, integrating security into these solutions is often perceived as making them more rigid.

This rigidity often manifests in the inability to gain parity in security control deployment in cloud environments compared to traditional IT. This stems mostly from the abstraction of infrastructure, and the lack of visibility and capability to integrate many familiar security controls — especially at the network layer”. [extract]

CSA Reference Model

Proofpoint – Security as a Service

CEO Gary Steele discusses how and why Proofpoint uses cloud-based technologies to deliver security and compliance solutions to its customers. Benefits of security-as-a-service solutions are cost, superior threat detection, prevention, and innovation.

Cloud Security Platform –  CloudAccess

Enterprise security delivered from the cloud as a SECaaS (Security-as-a-Service) application. http://www.cloudaccess.com/ – CloudAccess eliminates risk for customers and delivers a cloud-based IT security platform that is easy to use, affordable and manageable.

TELCO Challenge – Cloud Security Services

Almost by definition, telecom operators are becoming cloud service providers, opening up new opportunities to become a trusted extension of corporate IT.

In this video, Jim Reavis, Executive Director of the Cloud Security Alliance, discusses the two-fold requirement for operators to best secure their own networks while leveraging this infrastructure for outsourced IT services.

Nick Kael, Principal Security Strategist at Symantec, discusses the telco challenges of multi-tenant cloud security. Four design principles for cloud security are presented.

So Security as a Service (SECaaS) is the set of security service capabilities that are typically provided by a third party using the SaaS (software as a service) model.

At a hardware level the local / global network providers (Telcos) have deep expertise in all types of security offerings for Traditional IT and Cloud IaaS and PaaS.

The Cloud Security Alliance is a trusted source of research that will enable you to evaluate and procure next generation Security as a Service(s).

You can procure a managed cloud security service but it is important to understand that the Security as a Service broker sits between the Customer and the Cloud Service Provider.  Cloud Security is a shared responsibility but you can’t handover accountability for risk management and information assurance.

Leave a comment

Filed under Business

CISCO has a Cloud CTO; does your organization need one too?

Lew Tucker Cisco Cloud Chief Technology Officer

“As a CTO, I think we’re often asked to look around corners, to peer into the future and to extrapolate from what we see in the marketplace today and technology trends so that we can anticipate what’s coming next.

One of the things I think we find is that the market always responds to a need that’s present in the marketplace by the customers.

So one of those needs was to develop the software that Amazon runs in an open-source environment so that anybody could build their Amazon-style cloud.

And so Cisco saw an opportunity here to influence that and in fact make sure that the idea of a network based service would become an essential part of this new open-source, OpenStack cloud”.

Lew Tucker @ Cloud Connect

You will have to adjust the volume.  Excellent presentation slides supporting the key messages that he conveyed.

Moving to a world of many clouds – “connected Clouds”

As we move forward we will start to see the emergence of industry vertical clouds e.g. Healthcare, e-Gov

06:05 Cloud Focus. It is important that we get the cloud computing model right

Build out your virtual data centre with the trinity of Network, Compute and Data services

07:40 OpenStack high level overview

Description of Quantum Network Service Abstraction

Multi-tenant Virtual Data Centres

Think deeply about what you want in your own Virtual Data Centre in the Cloud

Organizations will typically ask the CIO or the CTO to assimilate responsibility for the design of the Cloud Strategy and implementation of the Cloud Model.

For me the cloud ecosystem is far too dynamic and moving at such a pace that the sole focus of the CTO must be on enabling Business change and delivering cost savings.  The CTO must specify whether Application placement will either be close to the customer [Systems of Engagement] or close to the data. 

Presently key Business stakeholders have no interest in the Data Centre infrastructure and are ambivalent regarding from where Compute services are sourced.  For example iCloud, Dropbox etc. are ubiquitous and always on.

The CTO should be responsible for the Cloud Blueprint.  One design solution increasing in adoption is where Virtual Private Clouds extend the Data Centre into the cloud.  Network service providers deliver Virtual Private Network tunneling and multiple subnets to enable the seamless linkage between the physical data centre and elastic compute services.  

Moreover, the CTO must support the Sourcing and Procurement function manage the commercial relationship with Cloud Service Brokerages who package cloud services for customers.  

For me there is a clear distinction between the CIO, CTO and Cloud CTO roles.

  • The Cloud CTO is on the Sell side and is a role fulfilled by Cloud Independent Software Vendors and providers of Network, Compute and Data Services.
  • On the Buy side sits the CTO who is responsible for designing, sourcing and managing the service to the customer regardless of whether it is comprised of VPCs ,on and off premise, connected clouds or Hyper-hybrid Clouds.

If your organization does not have a CTO then you can reach out to the many advisory firms to help map out your journey into the Cloud.  Safe travels.

Leave a comment

Filed under Business