ISACA CSX – The Security Considerations for Cloud Computing
Security Considerations for Cloud Computing as presented by ISACA CSX (CyberSecurity Nexus) give us practical guidance to facilitate the decision process for IT and business professionals concerning the decision to move to the cloud. It helps enable effective analysis and measurement of risk through use of decision trees and checklists outlining the security factors to be considered when evaluating the cloud as a potential solution. There are five essential characteristics, three types of service models and four major deployment models to be taken into account relative to cloud computing. To ensure a common understanding of these models, this publication describes the characteristics of each characteristic and model. The Tool Kit is added to this guide from the ISACA Cloud Computing Vison Series.
Andrej Orel is working in information security for more than ten years. This field represents a mere evolvement from the general IT quality management. His other responsibility lies in health informatics where he is involved in building safe and secure e-health systems for the benefit of patients and health professionals as well. He is working as CISO @ CQMO in the Slovenian company Marand d.o.o. – a computer company specialized in development of health information systems based on Open standards for the high impact global use. He is also member of ISACA, currently serving as ISACA Slovenia chapter Board Member responsible for the ISACA CSX program.