Shared Responsibilities for Cloud Computing

Understand Security When Working with a Cloud Platform

There are several factors, such as cost, ease of use, privacy, and security, to consider when evaluating how well a public cloud service meets your organization’s needs. It is also essential to evaluate how well a cloud solution provider (CSP) manages the privacy and security of the cloud. Some organizations mistakenly assume that the role of securing the data shifts to the CSP when they’re largely responsible for specific security elements, such as the physical infrastructure and network.

Several CSPs like Azure have adopted a Shared Responsibility Model that leaves much of the security burden on the organization. For example, a CSP will be responsible for the tools and features needed to secure a password, but the distribution and integrity of the password itself lies on the organization. The CSP is responsible in offering a considerable effort to secure an organization’s data, but this does not absolve the organization from taking advantage of these efforts.

Most Shared Responsibility Models take a layered approach to their security. It is critical to the security of an organization’s data that the organization understand their role in the CSP’s Shared Responsibility Model. Learn more about the types of cloud services available and their unique characteristics that makeup most Shared Responsibility Models in our “Share Responsibilities for Cloud Computing” paper.