To the Cloud: Cloud Powering an Enterprise


Posted on by Ben Rothke

A recent search on Amazon showed an amazing 1,460 titles on cloud computing.  It is no secret that cloud computing is a technology that has arrived. 

But with all the excitement around cloud computing, it is difficult to filter through the hype.  For those looking to get a clear understanding of this monstrosity called cloud computing, To the Cloud: Cloud Powering an Enterprise provides the reader with a detailed overview of what cloud computing is, and what it is not. 

While the book is authored by 3 technical Microsoft staffers; it is overall a vendor agnostic reference.  Albeit the epilogue does use a case study of the Windows Azure cloud platform. 

In fewer than 100 pages, the books 4 parts consist of sections on: 

  • Explore - understand the promise and challenges of cloud computing
  • Envision -  details how cloud computing can transform an organization
  • Enable -  details the necessary resources and skills for en effective cloud computing initiative
  • Execute – creating the design, development and operation of cloud computing 

While not specifically a security book, the authors note in chapter 3 that moving services to a public cloud means potentially increasing your business exposure to malicious attacks.  I would take note that it is not a potential increase, rather a definite increase.  The authors write that it is important to determine how well a cloud provider handles both technical and legal issues, in addition to other security requirements. 

Chapter 4 notes the importance of a penetration test for any cloud-based application.  It also stresses the need for comprehensive logging and monitoring. 

For those looking for a succinct tactical introduction to cloud computing, To the Cloud: Cloud Powering an Enterprise is an excellent place to start.


Contributors
Ben Rothke

Senior Information Security Manager, Tapad

cloud security

Blogs posted to the RSAConference.com website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA Conference™, or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.


Share With Your Community

Related Blogs