Cloud Service Providers (CSPs) emphasize the shared responsibility model for securing data in the cloud and meeting compliance requirements for information protection. CSPs own the responsibility to secure the infrastructure that runs their cloud services. Data owners are responsible for protecting the confidentiality, integrity, and availability of their data in the cloud. Making sure that this data is safe from unauthorized access requires organizations to consider not only the physical and logical security of the CSP but also who is encrypting the data; when and where the data is being encrypted; and who is creating, managing, and accessing the encryption keys.
In this session, attendees learned how to reduce the risks associated with storing sensitive data in the cloud. The speaker will address topics such as:
- Meeting compliance and regulatory mandates
- Applying customer-owned encryption and key management
- Deploying a hybrid cloud for increased security
- Utilizing multiple cloud providers effectively