The Cloud Standards Customer Council (CSCC) has updated its document titled “Security for Cloud Computing: 10 Steps to Ensure Success.” The paper is designed to help enterprises protect their data when using public cloud computing services. The ten steps are:
- Ensure effective governance, risk and compliance.
- Audit operational and business processes.
- Manage people, roles and identities.
- Ensure proper protection of data and information.
- Enforce privacy policies.
- Assess the security provisions for cloud applications.
- Ensure cloud networks and connections are secure.
- Evaluate security controls on physical infrastructure and facilities.
- Manage security terms in the cloud service agreement.
- Understand the security requirements of the exit process.