{"id":4855,"date":"2012-11-28T23:50:02","date_gmt":"2012-11-28T23:50:02","guid":{"rendered":"http:\/\/www.cloudcomputing-news.net\/blog-hub\/2012\/nov\/28\/governance-must-drive-all-security-initiativeseven-cloud\/"},"modified":"2012-11-28T23:50:02","modified_gmt":"2012-11-28T23:50:02","slug":"why-governance-must-drive-all-security-initiativeseven-cloud","status":"publish","type":"post","link":"https:\/\/icloud.pe\/blog\/why-governance-must-drive-all-security-initiativeseven-cloud\/","title":{"rendered":"Why governance must drive all security initiatives\u2026even cloud"},"content":{"rendered":"<p>&ldquo;The &lsquo;how,&rsquo; many change, but the &lsquo;what&rsquo; is fundamental to risk management.&rdquo;<\/p>\n<p>I heard these sage words at a recent ISSA (Information Systems Security Association) meeting from a CIO speaking about security from the cloud.<\/p>\n<p>He continued, &ldquo;<strong>Risk is not unique to the cloud<\/strong>. It experiences the same issues that affect any outsourcing or third party deliverable. It is <em>bounded by the same concerns regarding governance<\/em>&mdash;does it meet the requirements of my industry? Is my data free from co-mingling? Are the proper notification protocols in place?&rdquo;<\/p>\n<p>Do a Google search on &ldquo;cloud security&rdquo; and the first entry is &ldquo;How secure is the cloud?&rdquo; True professionals know the argument is not about technology or how security is delivered, but rather one of governance. You need to know exactly <em>who<\/em> HAS access to <em>what<\/em> resources and if these levels of access are appropriate. <\/p>\n<p>You need to know who IS accessing resources &#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&ldquo;The &lsquo;how,&rsquo; many change, but the &lsquo;what&rsquo; is fundamental to risk management.&rdquo;<br \/>\nI heard these sage words at a recent ISSA (Information Systems Security Association) meeting from a CIO speaking about security from the clo&#8230;<\/p>\n","protected":false},"author":9,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[],"tags":[],"class_list":["post-4855","post","type-post","status-publish","format-standard","hentry"],"_links":{"self":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/4855","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/comments?post=4855"}],"version-history":[{"count":0,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/posts\/4855\/revisions"}],"wp:attachment":[{"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/media?parent=4855"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/categories?post=4855"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/icloud.pe\/blog\/wp-json\/wp\/v2\/tags?post=4855"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}