Saturday, April 20, 2013

CIAOPS Podcast–Episode 50


The CIAOPS podcast has now reached a milestone, 50 episodes! Who would have ever thought? And for such a special occasion we need to have a special guest and we have, SBS Diva Susan Bradley joins us again. Susan speaks about the challenges of compliance with technology and especially in the new world of cloud computing.
http://ciaops.podbean.com/2013/04/16/episode-50-susan-bradley/
You can support this podcast via http://donation.ciaops.com
Don't forget all the other previous 49 podcasts at http://ciaops.podbean.com and appreciate a like over at http://www.facebook.com/n2kpodcast.
Remember if you want to be a guest please contact me (director@ciaops.com).
Show notes:
http://office.microsoft.com/en-us/business/office-365-security-and-privacy-verified-by-a-third-party-FX103089231.aspx
http://certification.comptia.org/getCertified/certifications/security.aspx
https://www.isc2.org/cissp/default.aspx
http://www.guidancesoftware.com/computer-forensics-training-courses.htm
http://www.rand.org/pubs/technical_reports/TR933.html
https://cloudsecurityalliance.org/
https://cloudsecurityalliance.org/topthreats/csathreats.v1.0.pdf
https://downloads.cloudsecurityalliance.org/initiatives/top_threats/The_Notorious_Nine_Cloud_Computing_Top_Threats_in_2013.pdf
Cloud Computing Risk Assessment
https://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-risk-assessment
Cloud Computing Information Assurance Framework https://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-information-assurance-framework
Procure Secure: A guide to monitoring of security service levels in cloud contracts https://www.enisa.europa.eu/activities/Resilience-and-CIIP/cloud-computing/procure-secure-a-guide-to-monitoring-of-security-service-levels-in-cloud-contracts
Just to add that ENISA (the European Network and Information Security Agency) has some excellent material for free;
Cloud Computing Risk Assessment
https://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-risk-assessment
Cloud Computing Information Assurance Framework
https://www.enisa.europa.eu/activities/risk-management/files/deliverables/cloud-computing-information-assurance-framework
Procure Secure: A guide to monitoring of security service levels in cloud contracts
https://www.enisa.europa.eu/activities/Resilience-and-CIIP/cloud-computing/procure-secure-a-guide-to-monitoring-of-security-service-levels-in-cloud-contracts
ALSO, RAND did a decent cloud security / trust overview ...
http://www.rand.org/pubs/technical_reports/TR933.html
AND As these guys are good too, great organization... recent papers on top security threats..
https://cloudsecurityalliance.org/
https://cloudsecurityalliance.org/topthreats/csathreats.v1.0.pdf
https://downloads.cloudsecurityalliance.org/initiatives/top_threats/The_Notorious_Nine_Cloud_Computing_Top_Threats_in_2013.pdf
http://www.verizonenterprise.com/DBIR/2012/
http://governmentcio.com/content/going-all-cloud-computing