Get startedGet started for free

Cloud-native architecture for security

1. Cloud-native architecture for security

Cloud environments contend with a unique set of threats, but the good news is there are effective ways to deal with them. In this video, you’ll learn how to keep your assets safe in the cloud. With everything in a cloud environment on the internet instead of an on-premises server, the cloud needs a specific type of security. One of the pillars of cloud security is the shared responsibility model: an agreement between the customer and the cloud service provider, also called the CSP. The shared responsibility model is the implicit and explicit agreement between the customer and the cloud service provider regarding the shared accountability for security controls. The shared responsibility model states that a cloud provider monitors and responds to security threats related to the cloud and its underlying infrastructure. Meanwhile, end users, including individuals and businesses, are responsible for protecting the data and other assets they store in any cloud environment. As a cloud security professional, it’s important to consider how to maintain your end of the shared responsibility agreement. You may need to follow regulatory obligations, develop a risk management plan, apply the security standards of your organization and your customers, and follow vendors’ security requirements. It’s important to understand the different responsibilities that you, your organization, and your CSP have in securing cloud assets. The shared security model can help you determine these responsibilities. In a cloud model, servers and hardware are typically housed in a data center —outside of your control— so the provider takes care of the physical hardware. As a cloud security professional, you’re responsible for setting the security controls for your organization. For example, imagine a construction company builds a brand new gate and fence. The gate is strong, and no one can break it down. Sounds pretty secure, right? Well, maybe not. After the gate is built, they put an old, rusty lock on it. Because the construction company used an ineffective security measure to secure the gate, a malicious actor who really wants to get in can. This is an example of misconfiguration. Misconfiguration is like using a security control on your cloud assets that can be easily compromised. That’s why it’s your responsibility to keep up with changes, and always configure your security controls for the latest threats. Now that you know you’re responsible for setting security controls, you also need to determine who gets access to what in the cloud system. This is known as multilevel security. One aspect of multilevel security is access control. Access controls are security controls that manage access, authorization, and accountability of information. Other aspects of multilevel security include using data sensitivity and classification together with IAM. To do this, you need to determine how sensitive your data is and assign access based on its classification. You’ve taken quite a journey through the security concepts in this video. Now you know how to secure data in cloud-native architecture.

2. Let's practice!

Create Your Free Account

or

By continuing, you accept our Terms of Use, our Privacy Policy and that your data is stored in the USA.