SlideShare a Scribd company logo

Windstream Cloud Security Checklist

Ideba, profile picture
Ideba

The document emphasizes the importance of comprehensive cloud security that protects data confidentiality, integrity, and availability while acknowledging growing security incidents outpacing economic growth. It highlights the emerging threats from insider sources and the need for active and ongoing compliance with regulations, including conducting regular vulnerability assessments. Additionally, the communication gap between IT security teams and executives is underscored, indicating a need for improved security dialogue.

Marketing
Related topics:
Data Protection Practices
1 of 4
Download to read offline
1
2
3
4
KEEPING THREATS AT BAY “A secure storage solution is one that reliably stores data and allows authorized users to quickly access that data, while also preventing those unauthorized from doing so...Ultimately, the solution must protect the confidentiality, integrity, and availability of all data.”1 - Leviathan Security Group 1 Leviathan Security Group, “Value of Cloud Security: Vulnerability” 2 OECD, Economic oUtlook No. 95, May 2014, eMarketer, Smartphone Users Worldwide will Total 1.75 Billion in 2014, January 16, 2014; “The Global State of Information Sercurity” Survey 2015 3 Data Center Knowledge, “Data Center Security: Controlling Threat in Your Facility,” March 3, 2015 COMPREHENSIVE CLOUD SECURITY Is your data secure? “To sum up, there are three things any CSO or CIO should keep top of mind: the perimeter is gone, visibility is key, and current security practices are obsolete.”3 Security incidents outpace GDP and mobile phone growth2 Year-over-year growth, 2013-2014 Global security incidents (GSISS 2015) Global smartphone users (eMarketer) Global GDP (OECD) 48% 22% 21%
4 PWC, Regulatory and Compliance Reporting, http://www.pwc.com/gx/en/audit-services/regulatory-compliance/index.html 5 Bureau Van Dijk, “Spread of regulatory action outside US 'the top compliance issue of 2014” http://www.bvdinfo.com/industrynews/compliance-and-due-diligence/spread-of-regulatory-action-outside-us-the-top-compliance-issue-of-2014-/801768161#sthash.XyASNoN0.dpuf 6 Bloomberg, “A Regulatory Compliance Program Should be Top Concern, Advisors Say COMPLIANCE – LIMITING RISKS “Compliance is about more than prevention. It’s also about navigating opportunities.”4 Are you confident you’re compliant? Are you certain of all of your compliance obligations? “[The compliance plan] is not a document that you create and put on the shelf and never deal with again. It needs to be a living, breathing document that is tested and updated.”6 - Brian C. Ong, Sr. Managing Director, FTI Consulting, New York 28%35% COMPREHENSIVE CLOUD SECURITY spread of regulatory action outside of the US.5 anti-money laundering rules.5 Top compliance issues of 2014:
7 Dept. of Homeland Security, “Increase in Insider Threat Cases Highlight Significant Risks to Business Networks and Proprietary Information 8 PRNewsire, “Raytheon-commissioned Ponemon Institute Survey: 88 percent believe privileged user abuse will increase” POTENTIAL THREATS WITHIN “There has been an increase in computer network exploitation and disruption by disgruntled and/or former employees. The FBI and DHS assess that disgruntled and former employees pose a significant cyber threat to US businesses due to their authorized access to sensitive information and the networks businesses rely on.”7 stated their security tools don't provide enough contextual information to determine intent behind reported incidents.8 COMPREHENSIVE CLOUD SECURITY recognize insider threats as a cause for alarm but have difficulty identifying specific threatening actions by insiders.8 How easy is it for users to abuse access privileges? say it is likely social engineers from outside the organization will target privileged users to obtain their access rights.845% 69% 88%
PROCESSES AND PRACTICES “Having a regularly scheduled internal or external vulnerability assessment and penetration test performed is a good way to inform executive leadership of the threats facing the company, determine the Company’s adherence to industry standards and best practices, and to test ITs ability to respond to intrusion attempts and other incidents.”9 9 Protivity, “Cybersecurity Concerns Rise as a Risk Factor for Board Members and Senior Executives in 2015” http://www.prnewswire.com/news-releases/cybersecurity-concerns-rise-as-a-risk-factor-for-board-members-and-senior-executives-in-2015-300032571.html 10 SSAE – 16, “Vulnerability Assessment and Penetration Testing” 11 ITproportal, “New cloud survey reveals shadow IT dangers, and cloud policy adoption levels. 12 TechTarget, “Report finds poor security communication among executives” COMPREHENSIVE CLOUD SECURITY Do you track and report shadow I.T. and other vulnerabilities? Compliance regulations that require regular vulnerability assessments include SOX; SSAE 16/SOC 1; PCI DSS; HIPAA, GLBA; FISCAM10 What IT professionals say: Almost 1/3indicated that their organizations’ IT security teams never discuss security with executives, and another 23% only communicate with executives on an annual basis.12 72% didn’t know the number of shadow IT apps running in their company.11

More Related Content

PDF
Solving the Asset Management Challenge for Cybersecurity (It’s About Time)
Enterprise Management Associates
 
PDF
5 Key Findings on Advanced Threats
Hannah Jenney
 
PDF
Ponemon Report: Cyber Security Incident Response: Are we as prepared as we th...
Lancope, Inc.
 
PDF
10 things you should know about cybersecurity
United Technology Group (UTG)
 
PDF
Cognitive Security: How Artificial Intelligence is Your New Best Friend
SparkCognition
 
PDF
CYBERSECURITY: Game Planning for Success lunch and learn event, April 10th
United Technology Group (UTG)
 
PDF
The top challenges to expect in network security in 2019 survey report
Bricata, Inc.
 
PDF
University-of-Miami_MEDINA
Kelvin Medina, CISSP, PA-QSA, QSA, GCIH, CISA, ITIL
 
Solving the Asset Management Challenge for Cybersecurity (It’s About Time)
Enterprise Management Associates
 
5 Key Findings on Advanced Threats
Hannah Jenney
 
Ponemon Report: Cyber Security Incident Response: Are we as prepared as we th...
Lancope, Inc.
 
10 things you should know about cybersecurity
United Technology Group (UTG)
 
Cognitive Security: How Artificial Intelligence is Your New Best Friend
SparkCognition
 
CYBERSECURITY: Game Planning for Success lunch and learn event, April 10th
United Technology Group (UTG)
 
The top challenges to expect in network security in 2019 survey report
Bricata, Inc.
 
University-of-Miami_MEDINA
Kelvin Medina, CISSP, PA-QSA, QSA, GCIH, CISA, ITIL
 

What's hot (20)

PDF
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...
Symantec
 
PPTX
Wearables and Internet of Things (IoT) - MWC15
Symantec
 
PDF
Five Reasons to Look Beyond Math-based Next-Gen Antivirus
Sarah Vanier
 
PDF
Data exfiltration so many threats 2016
FitCEO, Inc. (FCI)
 
PDF
Symantec 2011 Encryption Flash Poll Global Results
Symantec
 
PDF
Building a Mobile Security Model
tmbainjr131
 
PDF
Why You’ll Care More About Mobile Security in 2020 - Tom Bain
EC-Council
 
PPTX
SC Magazine eSymposium: SIEM
Emulex Corporation
 
DOCX
Why security is the kidney not the tail of the dog v3
Ernest Staats
 
PPTX
Imperva ppt
Imperva
 
KEY
Introduction to MicroSolved, Inc.
MRMaguire
 
PDF
Device discovery for vulnerability assessment: Automating the Handoff
nathan-axonius
 
PPTX
User Behavior Analytics And The Benefits To Companies
Spectorsoft
 
PPTX
Webinar Ivanti Neurons For Patch Intelligence
Ivanti
 
PDF
Spe security and privacy enhancement framework for mobile devices
LeMeniz Infotech
 
PPTX
Security and Wearables: Success starts with security
Stephen Cobb
 
PPTX
To Build Or Not To Build: Can SOC-aaS Bridge Your Security Skills Gap?
NetEnrich, Inc.
 
PDF
The Seven Kinds of Security
Veracode
 
PDF
Data Safety And Security
Constantine Karbaliotis
 
PPT
Information Technology Security Basics
Mohan Jadhav
 
The Stand Against Cyber Criminals Lawyers, Take The Stand Against Cyber Crimi...
Symantec
 
Wearables and Internet of Things (IoT) - MWC15
Symantec
 
Five Reasons to Look Beyond Math-based Next-Gen Antivirus
Sarah Vanier
 
Data exfiltration so many threats 2016
FitCEO, Inc. (FCI)
 
Symantec 2011 Encryption Flash Poll Global Results
Symantec
 
Building a Mobile Security Model
tmbainjr131
 
Why You’ll Care More About Mobile Security in 2020 - Tom Bain
EC-Council
 
SC Magazine eSymposium: SIEM
Emulex Corporation
 
Why security is the kidney not the tail of the dog v3
Ernest Staats
 
Imperva ppt
Imperva
 
Introduction to MicroSolved, Inc.
MRMaguire
 
Device discovery for vulnerability assessment: Automating the Handoff
nathan-axonius
 
User Behavior Analytics And The Benefits To Companies
Spectorsoft
 
Webinar Ivanti Neurons For Patch Intelligence
Ivanti
 
Spe security and privacy enhancement framework for mobile devices
LeMeniz Infotech
 
Security and Wearables: Success starts with security
Stephen Cobb
 
To Build Or Not To Build: Can SOC-aaS Bridge Your Security Skills Gap?
NetEnrich, Inc.
 
The Seven Kinds of Security
Veracode
 
Data Safety And Security
Constantine Karbaliotis
 
Information Technology Security Basics
Mohan Jadhav
 
Ad

Viewers also liked (15)

PDF
Glosa preinter
Alicia A. Vazquez Espinoza
 
PDF
Symantec Consulting Infographic
Ideba
 
ODP
Introduzione a Riak
Dimitri De Franciscis
 
PPTX
Veritas Managed Enterprise Vault Presentation
Ideba
 
PPTX
Veritas Managed Backup Services Presentation
Ideba
 
PPTX
Slider new saree desing
9799227207
 
PDF
Personnel Management in MNE
Angelito Estrada, MBA
 
PPTX
Presentation airmove milestone 201402
pektir
 
PPTX
Mantenimiento de teclado
dannypoliamericano
 
PDF
EAI Non-Compliance Infographic
Ideba
 
DOC
Time table no._2_actual
Dnyaneshwar Phapale
 
PDF
Financing Agriculture Technology Transfer in Bangladesh
Md Alauddin
 
PPTX
E government by lito
Angelito Estrada, MBA
 
PPT
Automobile suspension system
Dnyaneshwar Phapale
 
PDF
Case Study: Starbucks
Angelito Estrada, MBA
 
Glosa preinter
Alicia A. Vazquez Espinoza
 
Symantec Consulting Infographic
Ideba
 
Introduzione a Riak
Dimitri De Franciscis
 
Veritas Managed Enterprise Vault Presentation
Ideba
 
Veritas Managed Backup Services Presentation
Ideba
 
Slider new saree desing
9799227207
 
Personnel Management in MNE
Angelito Estrada, MBA
 
Presentation airmove milestone 201402
pektir
 
Mantenimiento de teclado
dannypoliamericano
 
EAI Non-Compliance Infographic
Ideba
 
Time table no._2_actual
Dnyaneshwar Phapale
 
Financing Agriculture Technology Transfer in Bangladesh
Md Alauddin
 
E government by lito
Angelito Estrada, MBA
 
Automobile suspension system
Dnyaneshwar Phapale
 
Case Study: Starbucks
Angelito Estrada, MBA
 
Ad

Similar to Windstream Cloud Security Checklist (20)

PPTX
The Cloud 9 - Threat & Solutions 2016 by Bobby Dominguez
EC-Council
 
PDF
idg_secops-solutions
Jonny Nässlander
 
PPTX
A guide to Sustainable Cyber Security
Ernest Staats
 
PDF
Building an Intelligence-Driven Security Operations Center
EMC
 
PDF
The Trust Paradox: Access Management and Trust in an Insecure Age
EMC
 
PPTX
Secure Iowa Oct 2016
Larry Slobodzian
 
PDF
Avoiding Limitations of Traditional Approaches to Security
Mighty Guides, Inc.
 
PPTX
IT Security Essentials
Skoda Minotti
 
PDF
Managed Security For A Not So Secure World Wp090991
Erik Ginalick
 
PPTX
Top Cybersecurity Challenges Facing Your Business
Nicholas Davis
 
PDF
User_Access_IIA-LA_3-9-2016
Karla Sasser, CPA CITP, CIA, CGMA
 
PDF
Foley-Cybersecurity-White-Paper_3.9.15
James Fisher
 
PDF
Biznesa infrastruktūras un datu drošības juridiskie aspekti
ebuc
 
PPTX
Securing your digital world cybersecurity for sb es
Sonny Hashmi
 
PPTX
Securing your digital world - Cybersecurity for SBEs
Sonny Hashmi
 
PDF
Threat Hunting, Detection, and Incident Response in the Cloud
Ben Johnson
 
PDF
The State of Data Security
Razor Technology
 
PDF
Industry Overview: Big Data Fuels Intelligence-Driven Security
EMC
 
PPTX
CSA Atlanta Q1'2016 Chapter Meeting
Phil Agcaoili
 
PDF
Cybersecurity in the Cloud: Safer Than You Think
Appian
 
The Cloud 9 - Threat & Solutions 2016 by Bobby Dominguez
EC-Council
 
idg_secops-solutions
Jonny Nässlander
 
A guide to Sustainable Cyber Security
Ernest Staats
 
Building an Intelligence-Driven Security Operations Center
EMC
 
The Trust Paradox: Access Management and Trust in an Insecure Age
EMC
 
Secure Iowa Oct 2016
Larry Slobodzian
 
Avoiding Limitations of Traditional Approaches to Security
Mighty Guides, Inc.
 
IT Security Essentials
Skoda Minotti
 
Managed Security For A Not So Secure World Wp090991
Erik Ginalick
 
Top Cybersecurity Challenges Facing Your Business
Nicholas Davis
 
User_Access_IIA-LA_3-9-2016
Karla Sasser, CPA CITP, CIA, CGMA
 
Foley-Cybersecurity-White-Paper_3.9.15
James Fisher
 
Biznesa infrastruktūras un datu drošības juridiskie aspekti
ebuc
 
Securing your digital world cybersecurity for sb es
Sonny Hashmi
 
Securing your digital world - Cybersecurity for SBEs
Sonny Hashmi
 
Threat Hunting, Detection, and Incident Response in the Cloud
Ben Johnson
 
The State of Data Security
Razor Technology
 
Industry Overview: Big Data Fuels Intelligence-Driven Security
EMC
 
CSA Atlanta Q1'2016 Chapter Meeting
Phil Agcaoili
 
Cybersecurity in the Cloud: Safer Than You Think
Appian
 

More from Ideba (20)

PDF
Kaufman Hall Healthcare Infographic
Ideba
 
PDF
Kaufman Hall Finance Infographic
Ideba
 
PDF
Kaufman Hall Education Infographic
Ideba
 
PDF
Kaufman Hall Axiom Software - Emory Case Study
Ideba
 
PDF
Microsoft Teams Infographic
Ideba
 
PPTX
C4 Database Management Onboarding
Ideba
 
PDF
C4 Database Management Website
Ideba
 
PDF
FINEOS Booth
Ideba
 
PDF
FINEOS Website
Ideba
 
PDF
Kaufman Hall Axiom Booth (2/2)
Ideba
 
PDF
Kaufman Hall Axiom Booth (1/2)
Ideba
 
PDF
Greenway Health Amicus Case Study
Ideba
 
PDF
Greenway Health Dr. Randolph Lamberson Case Study
Ideba
 
PDF
Cortez Health Case Study
Ideba
 
PDF
Greenway Health Primary Care Internists Case Study
Ideba
 
PDF
Greenway Health EHR Satisfaction Infographic
Ideba
 
PDF
Greenway Health Cow Creek Case Study
Ideba
 
PDF
Greenway Health Case Study Infographic
Ideba
 
PDF
Ideba Uganda 2020 Logo Options
Ideba
 
PPTX
Ideba Creative Portfolio
Ideba
 
Kaufman Hall Healthcare Infographic
Ideba
 
Kaufman Hall Finance Infographic
Ideba
 
Kaufman Hall Education Infographic
Ideba
 
Kaufman Hall Axiom Software - Emory Case Study
Ideba
 
Microsoft Teams Infographic
Ideba
 
C4 Database Management Onboarding
Ideba
 
C4 Database Management Website
Ideba
 
FINEOS Booth
Ideba
 
FINEOS Website
Ideba
 
Kaufman Hall Axiom Booth (2/2)
Ideba
 
Kaufman Hall Axiom Booth (1/2)
Ideba
 
Greenway Health Amicus Case Study
Ideba
 
Greenway Health Dr. Randolph Lamberson Case Study
Ideba
 
Cortez Health Case Study
Ideba
 
Greenway Health Primary Care Internists Case Study
Ideba
 
Greenway Health EHR Satisfaction Infographic
Ideba
 
Greenway Health Cow Creek Case Study
Ideba
 
Greenway Health Case Study Infographic
Ideba
 
Ideba Uganda 2020 Logo Options
Ideba
 
Ideba Creative Portfolio
Ideba
 

Recently uploaded (20)

PPTX
hnk joint business plan for_Rooftop_Plan
mymyinboxx
 
PDF
Pay-Per-Click Marketing: Strategies That Actually Work in 2025
Digital Markitors
 
PPTX
"Best Healthcare Digital Marketing Ideas
businexperts1
 
PPTX
Presentation - GreenPantry – Instagram-First Home Kitchen Brand.pptx
enochdenziljoseph06
 
PPTX
Best Digital marketing service provider in Chandigarh.pptx
digitalsewak17
 
PPTX
Choose the Right SEO Agency India - 7 Key Tips by Clickbold Media
Clickbold media
 
PPT
Market research before Marketing Research .PPT
PriyankoDasgupta1
 
PPTX
Tea and different types of tea in India
PrachiMor3
 
PDF
Unit 1 -2 THE 4 As of RURAL MARKETING MIX.pdf
simransahu30
 
PPTX
Ranking a Webpage with SEO (And Tracking It with the Right Attribution Type a...
Muyiwa8
 
PDF
Branding Basics: Building a Strong Brand Identity, Positioning, Storytelling ...
Dipendra Poudel | The Digital Dipendra
 
PPTX
Fixing-AI-Hallucinations-The-NeuroRanktm-Approach.pptx
StratEdgyByPulpStrat
 
PDF
EVOLUTION OF RURAL MARKETING IN INDIAN CIVILIZATION
simransahu30
 
PDF
20K Btc Enabled Cash App Accounts – Safe, Fast, Verified.pdf
BestPlacestoBuyVerif
 
PPTX
Ipsos+Protocols+Playbook+V1.2+(DEC2024)+final+IntClientUseOnly.pptx
mymyinboxx
 
PDF
E_Book_Customer_Relation_Management_0.pdf
GagandeepSingh496543
 
PDF
UNIT 1 -4 Profile of Rural Consumers (1).pdf
simransahu30
 
PDF
Digital Marketing Agency vs Freelancers and VAs: Which Should You Hire in 2025
Jomer Gregorio
 
PDF
SEO vs. AEO: Optimizing for Google vs AI-Powered Search Assistants
Jomer Gregorio
 
PDF
You Need SEO for Your Business. Here’s Why..pdf
Namami Inc
 
hnk joint business plan for_Rooftop_Plan
mymyinboxx
 
Pay-Per-Click Marketing: Strategies That Actually Work in 2025
Digital Markitors
 
"Best Healthcare Digital Marketing Ideas
businexperts1
 
Presentation - GreenPantry – Instagram-First Home Kitchen Brand.pptx
enochdenziljoseph06
 
Best Digital marketing service provider in Chandigarh.pptx
digitalsewak17
 
Choose the Right SEO Agency India - 7 Key Tips by Clickbold Media
Clickbold media
 
Market research before Marketing Research .PPT
PriyankoDasgupta1
 
Tea and different types of tea in India
PrachiMor3
 
Unit 1 -2 THE 4 As of RURAL MARKETING MIX.pdf
simransahu30
 
Ranking a Webpage with SEO (And Tracking It with the Right Attribution Type a...
Muyiwa8
 
Branding Basics: Building a Strong Brand Identity, Positioning, Storytelling ...
Dipendra Poudel | The Digital Dipendra
 
Fixing-AI-Hallucinations-The-NeuroRanktm-Approach.pptx
StratEdgyByPulpStrat
 
EVOLUTION OF RURAL MARKETING IN INDIAN CIVILIZATION
simransahu30
 
20K Btc Enabled Cash App Accounts – Safe, Fast, Verified.pdf
BestPlacestoBuyVerif
 
Ipsos+Protocols+Playbook+V1.2+(DEC2024)+final+IntClientUseOnly.pptx
mymyinboxx
 
E_Book_Customer_Relation_Management_0.pdf
GagandeepSingh496543
 
UNIT 1 -4 Profile of Rural Consumers (1).pdf
simransahu30
 
Digital Marketing Agency vs Freelancers and VAs: Which Should You Hire in 2025
Jomer Gregorio
 
SEO vs. AEO: Optimizing for Google vs AI-Powered Search Assistants
Jomer Gregorio
 
You Need SEO for Your Business. Here’s Why..pdf
Namami Inc
 

Windstream Cloud Security Checklist

  • 1. KEEPING THREATS AT BAY “A secure storage solution is one that reliably stores data and allows authorized users to quickly access that data, while also preventing those unauthorized from doing so...Ultimately, the solution must protect the confidentiality, integrity, and availability of all data.”1 - Leviathan Security Group 1 Leviathan Security Group, “Value of Cloud Security: Vulnerability” 2 OECD, Economic oUtlook No. 95, May 2014, eMarketer, Smartphone Users Worldwide will Total 1.75 Billion in 2014, January 16, 2014; “The Global State of Information Sercurity” Survey 2015 3 Data Center Knowledge, “Data Center Security: Controlling Threat in Your Facility,” March 3, 2015 COMPREHENSIVE CLOUD SECURITY Is your data secure? “To sum up, there are three things any CSO or CIO should keep top of mind: the perimeter is gone, visibility is key, and current security practices are obsolete.”3 Security incidents outpace GDP and mobile phone growth2 Year-over-year growth, 2013-2014 Global security incidents (GSISS 2015) Global smartphone users (eMarketer) Global GDP (OECD) 48% 22% 21%
  • 2. 4 PWC, Regulatory and Compliance Reporting, http://www.pwc.com/gx/en/audit-services/regulatory-compliance/index.html 5 Bureau Van Dijk, “Spread of regulatory action outside US 'the top compliance issue of 2014” http://www.bvdinfo.com/industrynews/compliance-and-due-diligence/spread-of-regulatory-action-outside-us-the-top-compliance-issue-of-2014-/801768161#sthash.XyASNoN0.dpuf 6 Bloomberg, “A Regulatory Compliance Program Should be Top Concern, Advisors Say COMPLIANCE – LIMITING RISKS “Compliance is about more than prevention. It’s also about navigating opportunities.”4 Are you confident you’re compliant? Are you certain of all of your compliance obligations? “[The compliance plan] is not a document that you create and put on the shelf and never deal with again. It needs to be a living, breathing document that is tested and updated.”6 - Brian C. Ong, Sr. Managing Director, FTI Consulting, New York 28%35% COMPREHENSIVE CLOUD SECURITY spread of regulatory action outside of the US.5 anti-money laundering rules.5 Top compliance issues of 2014:
  • 3. 7 Dept. of Homeland Security, “Increase in Insider Threat Cases Highlight Significant Risks to Business Networks and Proprietary Information 8 PRNewsire, “Raytheon-commissioned Ponemon Institute Survey: 88 percent believe privileged user abuse will increase” POTENTIAL THREATS WITHIN “There has been an increase in computer network exploitation and disruption by disgruntled and/or former employees. The FBI and DHS assess that disgruntled and former employees pose a significant cyber threat to US businesses due to their authorized access to sensitive information and the networks businesses rely on.”7 stated their security tools don't provide enough contextual information to determine intent behind reported incidents.8 COMPREHENSIVE CLOUD SECURITY recognize insider threats as a cause for alarm but have difficulty identifying specific threatening actions by insiders.8 How easy is it for users to abuse access privileges? say it is likely social engineers from outside the organization will target privileged users to obtain their access rights.845% 69% 88%
  • 4. PROCESSES AND PRACTICES “Having a regularly scheduled internal or external vulnerability assessment and penetration test performed is a good way to inform executive leadership of the threats facing the company, determine the Company’s adherence to industry standards and best practices, and to test ITs ability to respond to intrusion attempts and other incidents.”9 9 Protivity, “Cybersecurity Concerns Rise as a Risk Factor for Board Members and Senior Executives in 2015” http://www.prnewswire.com/news-releases/cybersecurity-concerns-rise-as-a-risk-factor-for-board-members-and-senior-executives-in-2015-300032571.html 10 SSAE – 16, “Vulnerability Assessment and Penetration Testing” 11 ITproportal, “New cloud survey reveals shadow IT dangers, and cloud policy adoption levels. 12 TechTarget, “Report finds poor security communication among executives” COMPREHENSIVE CLOUD SECURITY Do you track and report shadow I.T. and other vulnerabilities? Compliance regulations that require regular vulnerability assessments include SOX; SSAE 16/SOC 1; PCI DSS; HIPAA, GLBA; FISCAM10 What IT professionals say: Almost 1/3indicated that their organizations’ IT security teams never discuss security with executives, and another 23% only communicate with executives on an annual basis.12 72% didn’t know the number of shadow IT apps running in their company.11