This article discusses the importance of understanding and level of effort required for mitigating risks that third-party cloud services (software-as-a-service, infrastructure-as-a-service, and platform-as-a-service) represent to an organization. Depending on the service, it may not be possible to conduct a thorough, direct assessment of the services, which is necessary to ensure securing the organization’s data. To overcome this lack of ability, organizations can default to developing a technology survey that asks questions that are considered important security factors. Additionally, organizations may be able to rely on external auditing firms that attest to the provider’s level of security and internally developed surveys.
Click the link below to read the full white paper by Chris Wolski
Check out more Cyber security News and Tips Here