ITU TRCSL Symposium on Cloud Computing...ITU‐TRCSL Symposium on Cloud Computing (28‐30 July 2015...

ITU‐TRCSL Symposium on Cloud Computing (28‐30 July 2015 Colombo Sri Lanka)

Cloud Security Challenges and Solutions

Jayaraj SayanthanLead Engineering Manager – IDC and CloudDialog Axiata PLC

Evolving Cloud Computing Challenges

Cloud Security Concerns and Threats

Cloud Security and Defense Plans (lots of devices???)

CIO’s Preferred Ways to Improve Cloud Security

What are we missing? and Bridging the gap…!!!

Setting and Enforcing Security Policies

Effective Mapping of Security Control

Information and Cloud Security Compliance

/Standards

ISO/IEC 27001: 2013

Cloud Controls Matrix v3.0.1

ISO/IEC 27000 – a success story

Original requirement identified by the Department of Trade and Industry (DTI) in late 1980s

• UK companies held back by lack of information security advice and guidance

• Market needed a “code of practice”

Developed for DTI, published by BSI

Became a British Standard, BS 7799, in 1995 and Certification standard BS 7799‐2 followed in 1999

Became International Standards ISO/IEC 27001 and 27002 in 2005

Other information security standards now being developed or harmonized into 270xx series standards

ISO/IEC 27001 family of standards

Applicability

Telecommunications

Health

Financial services

Inter-sector andInter organizational

2700327005

Risk Management

Guide 73

Certification

19011 Guidelines for ISMSauditing

Governance

Measurements

Code of practice

Requirements

Implementation guidance

27001+20000-1

Overview and vocabulary

Requirements for bodiesaudit and certification

Guidance for auditors on controls - TR

Guidelines for auditing management system

Conformity assessment- ISMS

Vocabulary

Principles andguidelines

27016 Organizational economics

Cloud Computing service

Conformity Assessment –Vocabulary and general principals

31010Risk assessment techniques 27001

+ industry vertical

Process control system -TR

Data protection control of public cloud computing service

27x Extended Range

New, Cleaner Organization of Domains in ISO 27001:2013

The New ISO/IEC 27001:2013 Structure

Cloud Control Matrix

Cloud Control Matrix – Domains and Controls

Sample Control and Applicability

Cloud Control Matrix Mapping with Other Standards

Cloud Security Alliance : The CSA STAR Certification

The CSA Open Certification Framework is an industry initiative to allow global, accredited, trusted certification of

cloud providers.

Suitable Security Policies / Controls are mandatory to enforce proper security with security devices and applications

Cloud Security Solutions On Demand

QUESTIONS…?

Thank You Very Much

ITU TRCSL Symposium on Cloud Computing...ITU‐TRCSL Symposium on Cloud Computing (28‐30 July 2015...

Documents

Cloud in Education - ITU: Committed to connecting the … cloud computing solutions – Meaning they seek workers familiar with cloud solutions 80% growth of unstructured data is predicted

Making the Networked Society - ITU · Access/Mobility Service Provider Core Devices/IoT Enterprise IT/Cloud Transport Management & Control Service Provider IT Cloud Applications Cloud

ITU-T Rec. Y.3501 (06/2016) Cloud computing - …static.kexinyun.org/upload/T-REC.pdfRec. ITU-T Y.3501 (06/2016) – Prepublished version 1 Recommendation ITU-T Y.3501 Cloud computing

ITU feb 2017€¦ · demand Cloud services Security. Public Cloud market Cloud infrastructure available as affordable services & as a commodity Public Cloud market has experienced

Green Data Centers - ITU · Green Data Centers A Guideline ITU-TRCSL Workshop on Greening the Future: Bridging the Standardization Gap on Environmental Sustainability, Colombo

ITU and ITU-R

ITU-T FG Cloud TR · PDF fileITU-T FG Cloud TR TELECOMMUNICATION ... Cloud computing origin and evolution: ... if they were to build applications, or worse, a whole data center, from

Tunis, Tunisia, 18-19 June 2012 REGLEMENTATIONS ET CLOUD COMPUTING Mr.Fadhel KRAIEM, D.G.A, Tunisie Telecom ITU Workshop on Cloud Computing (Tunis, Tunisia,

Overview of ITU-T Study Group 13 · Overview of ITU-T Study Group 13 Chairman: Chaesub Lee. Counsellor: Tatiana Kurakova. ITU Workshop on “Standardization on IMT, M2M, IoT, Cloud

ITU-TRCSL Symposium on Cloud Computing

ITU-T Rec. Y.3519 (12/2018) Cloud computing – Functional

ITU Cloud Computing Activities & Outcomes...cloud 4 Pillars towards cloud adoption: Innovation, infrastructure, skills and awareness, trust ... Korea (Republic of), Singapore, United

Cloud Computing work in ITU-T · 4 QoS and security 4, 16, 17 5 Future networks 7, 19, 20, 21 ... Endpoint : controls cloud traffic and improves cloud service delivery Inter Cloud:

Tunis, Tunisia, 18-19 June 2012 Status on Development of Cloud Computing Chae-Sub LEE Chairman of ITU-T SG13 Chae-sub.lee@ties.itu.int ITU Workshop on

Overview of the ITU works on Cloud Computing · Overview of the ITU works on Cloud Computing ... Second Study Group 13 Regional Workshop for Africa on "Future Networks: Cloud Computing,

GUIA HUATULCO - International Triathlon Union · Web viewSALINAS ITU SALINAS ITU ITU World Cup SALINAS ITU SALINAS ITU SALINAS ITU ITU World Cup SALINAS ITU ITU World Cup SALINAS

ITU CIS REGIONAL WORKSHOP · ITU CIS REGIONAL WORKSHOP KEY ELEMENTS OF BIG DATA –BETWEEN INNOVATION AND PRIVACY ... CLOUD, SECURITY & PRIVACY BRANDING & TRUST OUR MENU TODAY…

What Cloud computing means in real life - ITU · Interesting Facts • Cloudcomputingisnot aone technology nora one single architecture. • Technology behind Cloud Computing is said

ITU-T Focus Group on Aviation Applications of Cloud ... · The procedures for establishment of focus groups are defined in Recommendation ITU-T A.7. The ITU-T Focus Group on Aviation

Arabian Cloud Computing Project - ITU · Arabian Cloud Computing Project ... Green ICT. ITU Workshop on ... Cloud computing offers a new economic model for ICTs, it also