Cloud computing and cloud services are increasingly being used in the implementation of emerging technologies including artificial intelligence (AI), big data analytics and Internet of Things (IoT) devices. These cloud services are often hosted by third parties, which can become a security concern when you consider that most present-day enterprises are hyperconnected, and the boundaries between internal and external domains have been blurred. In this environment, information assurance professionals must not only address known threats and vulnerabilities, but they also must be prepared for new threats.
To manage cloud services, ISACA and Security Scorecard propose implementing continuous oversight in their Continuous Oversight in the Cloud: How to Improve Cloud Security, Privacy and Compliance white paper. This paper explores the security, privacy and compliance practices around emerging risk domains that can benefit from continuous oversight. Continuous oversight includes continuous assurance for data and processes, continuous cloud assurance, continuous supply chain management, and continuous improvement. This white paper aims to provide professionals with guidance to potentially improve the security around their cloud services and third-party providers.
To learn more, download this complimentary ISACA white paper from the Continuous Oversight in the Cloud: How to Improve Cloud Security, Privacy and Compliance page of the ISACA website.