Professional Documents
Culture Documents
5 Cloud Migration Security
5 Cloud Migration Security
5 Cloud Migration Security
Migration Security
Concerns
Bryan Batty
June 1, 2023
Copyright © 2022 HCL Software Limited | Confidential
Agenda
.
2
.
Why the Cloud?
Cost Geographic
Speed Scalability Savings Reach
.
3
.
1. Identity and Access Management - Risks
• User imitation
• Old accounts not revoked
.
4
.
1. Identity and Access Management - Impacts
• Data exposure
• Lost integrity
• Customer trust
.
5
.
1. Identity and Access Management - Mitigations
.
6
.
2. Compliance and Regulatory Issues - Risks
• GDPR
• FedRAMP
• CFIUS
• PCI
• Information Security Policy
.
7
.
2. Compliance and Regulatory Issues - Impacts
• Regulatory fines
• Lost business
• Lost opportunity
.
8
.
2. Compliance and Regulatory Issues - Mitigations
.
9
.
3. Service Availability - Risks
• Server outage
• Denial of Service attack
.
10
.
3. Service Availability - Impacts
• Lost service
• Lost revenue
.
11
.
3. Service Availability - Mitigations
.
12
.
4. Multitenancy Security Concerns - Risks
.
13
.
4. Multitenancy Security Concerns - Impacts
.
14
.
4. Multitenancy Security Concerns - Mitigations
.
15
.
5. Insider Threats - Risks
• Careless employee
• Disgruntled employee
• Compromised account
• Privilege misuse/abuse
• Opportunity
.
16
.
5Insider Threats - Impacts
• Lost data
• Stolen resources
• Sabotage
• Fraud
• Theft of Intellectual Property
.
17
.
5. Insider Threats - Mitigations
.
18
.
BONUS: Security Misconfiguration - Risks
.
19
.
BONUS: Security Misconfiguration - Impacts
.
20
.
BONUS: Security Misconfiguration – Mitigations
.
21
.
Summary
.
22
.