ibminterconnect

First be open to #CloudComputing education!

A1: I don't believe these ideas are diametrically opposed

Buying #Cloud service is not just like buying a product from an IT vendor.

Technology is driving change, organizations must continue to evolve to stay competitive. For many organizations, migration to the cloud is offering a level of security they’ve never achieved before.

#CloudComputing is about provisioning and consuming IT services, not IT products

A1: it takes a shift in culture to truly open to change and, if done correctly, shouldn't adversely affect security

Successful #cloud transitions balance business, economic and technology models to deliver a unique customer value proposition

@andrewsmhay that's right, but I think the cloud is being sold as a security enhancement opportunity, especially for SMB companies

You're absolutely right @andrewsmhay

By utilizing interdisciplinary knowledge in order to provide an optimally secure solution. Security is not solely a technical battle.

@clongc985 too few understand this. technology is not the solution...technology is often the problem

#IBMinterconnect teaches me about new business models that leverage #cloudcomputing

A10: I want to see the interesting ways that Watson will be plugged into traditional security technologies to (hopefully) make them better

I’m looking forward to seeing what IBM has to offer in #cloud security...and hopefully a chess game w/Watson! #securityweekly .@securityweekly

A10: That, and to catch up with my old Q1 Labs friends :)

more simply, I want to meet Watson

Want to also learn about advances in #cloudservicebrokerage and #cognitivecomputing

Watson serving me a drink!

I can't wait to meet #Watson

all of the above...

"Shortening the gap between books and knowledge."

Myth #1: #Cloud security is no different than traditional enterprise security

A8: That encryption is the only thing you need to be secure in a #cloud environment. "Wrong" :)

Myth #2: #Cloud security is the cloud provider’s responsibility

1. Migration to the cloud solves all your problems. 2. Adopting the cloud makes compliance concerns go away. 3. Outsourcing IT also shifts liability to the provider. #securityweekly .@securityweekly

Myth #3: A private #cloud keeps us from worrying about international data transfers issues

@andrewsmhay Encryption...the magic cure for everything! Not. #securityweekly .@securityweekly

Myth #4: There’s no need to worry about data sovereignty issues in #cloudcomputing

1, 2, 3

#Cloud Security is always the customer’s responsibility

A9: ....slowly :)

Cloud security will continue the trend of vendors calling the shots on security rather than organizations taking ownership/responsibility. Who needs process/procedures - just outsource everything to the cloud! #securityweekly @securityweek

Using #Cloud will highlight existing security weaknesses and magnify any losses

shared responsibility

Security needs to start with the organization. There needs to be a plan or strategy (a mission). Once the strategy is understood, then you can make smarter choices of how to achieve security which might well include cloud services!

"Once the strategy is understood, then you can make smarter choices to maximize defenses."

No one size fits all and #Cloud applications should not rely on infrastructure based security

A5: Training depends on the current skills, responsibilities, and demands of the individuals. There are general concepts that span all *aaS platforms but also nuances between them

Infrastructure #securiy is just a component of #Cloud security

I think staff should be trained on security, whether or not it is #cloud is not as important - except to understand who does what and how #securityweekly .@securityweekly

To improve #Cloud security train software developers on transitioning from tightly coupled applications to loosely coupled ones

To improve #Cloud security enterprises should also require certifications like the @ISC2 #CCSP https://www.isc2.org...

To improve #Cloud security enterprises should also consider the @cloudSA #CCSK https://cloudsecurit...

@Kevin_Jackson well...let's not start a holy war this early in the week :)

not a one-size fits all approach. you need to be as secure, and your staff well trained, dependent on your overall security strategy #securityweekly .@securityweekly

War definitely not intended. Training and certification are important

War. Ugh. what is it good for? #securityweekly .@securityweekly

@MrJeffMan, absolutely nothing...