Cloud Security

Cloud Security ensures applications, workloads, and data in platforms like AWS, Azure, and Google Cloud remain protected. It follows a shared responsibility model between providers and customers.

Key Concepts

• Shared Responsibility: Providers secure infrastructure, customers secure data and apps.
• Access Control: Enforce MFA and role-based permissions.
• Data Protection: Encrypt data at rest and in transit with strong keys.
• Compliance: Meet frameworks like GDPR, HIPAA, and ISO 27017.

Example Scenario

A company moves its HR system into the cloud:

1. Provider secures physical servers and networking layers.
2. Customer configures IAM policies with least privilege.
3. HR files are encrypted with customer-managed keys.
4. Logs are monitored for suspicious access attempts.

⬅ Back to Home