Who’s Responsible for PCI Compliance of Your Cloud Workload

Posted on by Mike Shinn

  This is part 1 of seven-part series on achieving PCI compliance in the cloud.   Shared Responsibility isn’t as easy as it sounds When businesses sign a service level agreement with a cloud provider, they may believe the provider will protect everything in their cloud− infrastructure and applications alike.  But in each contract there is […]

What the Capital One Breach Shows Us About Cloud Workload Protection

Posted on by Mike Shinn

What happened?  Many of us woke up to the news that the data of 100 million people were exposed when Capital One’s Amazon servers were breached by Seattle-based hacker.   While information about the specifics of the breach may never be known by the public, this staggering data loss is exceptionally instructive for organizations moving critical […]

Achieving AWS Compliance: Considerations for IT and Cloud Security Teams

Posted on by sshinn

Most every IT organization has wrestled with achieving regulatory compliance, meeting auditors requirements, and reporting to management and other stakeholders. Moving workloads to the cloud introduces new wrinkles to an already thorny set of problems. For organizations moving to the Amazon cloud, it’s critical that they understand their new and changing issues and responsibilities associated […]