SlideShare a Scribd company logo
2
Most read
3
Most read
Cloud security - Auditing and Compliance
What is Cloud Security




   Cloud Security is a broad set of policies,
    technologies, and controls deployed to
    protect data, applications, and the
    associated infrastructure of cloud
    computing.
Storage Auditing and
Compliance
   Compliance - Cloud service providers
    must comply appropriately with all the
    regulations within a country, regarding
    cloud security and data security.

   Storage Auditing – Certain Auditing
    companies may audit a cloud
    service, making sure it meets
    regulations of Compliance
Compliance Regulations

   Regulations including FISMA, HIPAA,
    and SOX in the United States, and the
    credit card industry's PCI DSS.

   Users may have to adopt community or
    hybrid deployment modes that are
    typically more expensive and may offer
    restricted benefits.
SSAE 16 “Certification”?
   SSAE 16 is an attestation standard put
    forth by the Auditing Standards Board
    (ASB) of the American Institute of
    Certified Public Accountants (AICPA)

   There is no designation, certification,
    award, confirmation, or any other type of
    validation for an actual SSAE 16
    assessment.
Storage Auditing services
   Storage Auditing services is provided by
    a 3rd Party Auditor and makes sure that
    your cloud computing data is secure and
    meets Compliance regulations
Security Solution providers
What does it cost today?
   Agiliance Continuous Compliance
    Service - $87,500 Per Year

   Average PCI DSS audit cost - $225K
    Per Year
What enhancements can be
expected?
   Enhanced Security regulations

   Increased Customer privacy regulations

   New regulations as Cloud Computing
    increases
What industries will likely be
impacted?
   Companies implementing Cloud
    Services
What products and services are
likely to be impacted?
   Cloud Services

     PAAS


     SAAS


     IAAS


     Etc.
Who benefits from Cloud
Compliance?
   Large and Mid size companies offering
    Cloud Computing.

   Compliance can reduce fees produced
    by Violations in regulations.
     HIPAA Violations cost the health care
     industry over 1.5 Million in penalties each
     year.
Multiple Choice Questions
   What is Cloud Computing
    A. set of policies, technologies, and controls
       deployed to protect data, applications, and
       the associated infrastructure of cloud
       computing.
    B. regulations such as FISMA, HIPAA, and
       SOX in the United States
    C. provisions and policies adopted by the
       network administrator
   What is Cloud Compliance
     A.   Regulations regarding Cloud Security and
          Data Security

     B.   An auditing service dedicated to cloud
          computing

     C. Enhancing Security in a network
The average PCI DSS audit cost is $30K
  Per Year

  A. True
  B. False
   FISMA, HIPAA, and SOX are all Cloud
    Compliance Regulations

     A. True
     B. False
   Which companies that Offer Cloud
    Services are most affected by Cloud
    Compliance

    A. Large and mid-size companies
    B. Small Companies
    C. No one is affected

More Related Content

PPTX
Signals and Antennas in mobile computing
PPTX
Google App Engine
PPTX
Common Standards in Cloud Computing
PPTX
Counter propagation Network
PPTX
Scheduling in Cloud Computing
PPTX
Hardware and software parallelism
PPTX
Tcp/ip server sockets
PPTX
Eucalyptus, Nimbus & OpenNebula
Signals and Antennas in mobile computing
Google App Engine
Common Standards in Cloud Computing
Counter propagation Network
Scheduling in Cloud Computing
Hardware and software parallelism
Tcp/ip server sockets
Eucalyptus, Nimbus & OpenNebula

What's hot (20)

PPTX
Vision of cloud computing
PPT
Ecg analysis in the cloud
PPT
Cloud interoperability
PPT
Cloud computing and service models
PPTX
Inductive analytical approaches to learning
DOCX
Unit v
PPTX
Task programming
PDF
VTU 6th Sem Elective CSE - Module 5 cloud computing
PPTX
Learning rule of first order rules
PPTX
mobile ad-hoc network (MANET) and its applications
PPT
Architecture of Mobile Computing
PPTX
PPT
Unit 4
PPTX
Attribute grammer
PDF
Unit 5- Cloud Applications.pdf
PPTX
IT6601 MOBILE COMPUTING UNIT1
PPTX
Design Goals of Distributed System
PPT
cloud computing:Types of virtualization
PPT
program partitioning and scheduling IN Advanced Computer Architecture
Vision of cloud computing
Ecg analysis in the cloud
Cloud interoperability
Cloud computing and service models
Inductive analytical approaches to learning
Unit v
Task programming
VTU 6th Sem Elective CSE - Module 5 cloud computing
Learning rule of first order rules
mobile ad-hoc network (MANET) and its applications
Architecture of Mobile Computing
Unit 4
Attribute grammer
Unit 5- Cloud Applications.pdf
IT6601 MOBILE COMPUTING UNIT1
Design Goals of Distributed System
cloud computing:Types of virtualization
program partitioning and scheduling IN Advanced Computer Architecture
Ad

Viewers also liked (6)

PDF
الحوكمة في البنوك
PPTX
Connecting ITSM to IT governance
PPT
Managing System Security
PPTX
Introduction to IT Governance using Cobit 5 مقدمة في حوكمة تقنية المعلومات - ...
PPTX
FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management
PPTX
DojoSec FISMA Presentation
الحوكمة في البنوك
Connecting ITSM to IT governance
Managing System Security
Introduction to IT Governance using Cobit 5 مقدمة في حوكمة تقنية المعلومات - ...
FISMA NextGen - Continuous Monitoring, Near Real-Time Risk Management
DojoSec FISMA Presentation
Ad

Similar to Cloud security - Auditing and Compliance (20)

PDF
Cloud services and it security
PDF
Ensuring PCI DSS Compliance in the Cloud
PDF
Cloud Security Governance
PPTX
Presentation Pci-dss compliance on the cloud
PDF
Whitepaper: Moving to Clouds? Simplify your approach to understand the risks ...
DOCX
SNHU assignment IT courses. Washington University
PPTX
OneAudit™ - Assess Once, Certify to Many
PPTX
Cloud computing Risk management
PDF
PCI DSS Success: Achieve Compliance and Increase Web Application Security
PPTX
Compliance in the Cloud
PPTX
HC3 Kickoff presentations - June 19, 2014
PDF
Facility Environmental Audit Guidelines
PPT
Legal And Regulatory Issues Cloud Computing...V2.0
PPT
C:\Fakepath\Cloud Computing Mitigating Risk Fmb 0110
DOCX
PCI DSS Compliance Cost_ A Comprehensive Guide.docx
PDF
Security for Cloud Computing: 10 Steps to Ensure Success V3.0
PDF
Maintaining Data Privacy with Ashish Kirtikar
PPTX
The Cloud Computing Contract Playbook: Contracting for Cloud Services
PDF
Financial Services-ready Public Cloud white paper [march 9, 2020]
PPTX
SFISSA - PCI DSS 3.0 - A QSA Perspective
Cloud services and it security
Ensuring PCI DSS Compliance in the Cloud
Cloud Security Governance
Presentation Pci-dss compliance on the cloud
Whitepaper: Moving to Clouds? Simplify your approach to understand the risks ...
SNHU assignment IT courses. Washington University
OneAudit™ - Assess Once, Certify to Many
Cloud computing Risk management
PCI DSS Success: Achieve Compliance and Increase Web Application Security
Compliance in the Cloud
HC3 Kickoff presentations - June 19, 2014
Facility Environmental Audit Guidelines
Legal And Regulatory Issues Cloud Computing...V2.0
C:\Fakepath\Cloud Computing Mitigating Risk Fmb 0110
PCI DSS Compliance Cost_ A Comprehensive Guide.docx
Security for Cloud Computing: 10 Steps to Ensure Success V3.0
Maintaining Data Privacy with Ashish Kirtikar
The Cloud Computing Contract Playbook: Contracting for Cloud Services
Financial Services-ready Public Cloud white paper [march 9, 2020]
SFISSA - PCI DSS 3.0 - A QSA Perspective

Recently uploaded (20)

PDF
Advanced Soft Computing BINUS July 2025.pdf
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
PDF
Advanced IT Governance
PDF
KodekX | Application Modernization Development
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
PPTX
Understanding_Digital_Forensics_Presentation.pptx
PDF
Chapter 3 Spatial Domain Image Processing.pdf
PDF
Machine learning based COVID-19 study performance prediction
PDF
NewMind AI Monthly Chronicles - July 2025
PDF
Electronic commerce courselecture one. Pdf
PDF
cuic standard and advanced reporting.pdf
PDF
NewMind AI Weekly Chronicles - August'25 Week I
PPTX
Big Data Technologies - Introduction.pptx
PPTX
MYSQL Presentation for SQL database connectivity
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
PDF
Spectral efficient network and resource selection model in 5G networks
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Advanced Soft Computing BINUS July 2025.pdf
CIFDAQ's Market Insight: SEC Turns Pro Crypto
The Rise and Fall of 3GPP – Time for a Sabbatical?
Advanced IT Governance
KodekX | Application Modernization Development
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
Mobile App Security Testing_ A Comprehensive Guide.pdf
Understanding_Digital_Forensics_Presentation.pptx
Chapter 3 Spatial Domain Image Processing.pdf
Machine learning based COVID-19 study performance prediction
NewMind AI Monthly Chronicles - July 2025
Electronic commerce courselecture one. Pdf
cuic standard and advanced reporting.pdf
NewMind AI Weekly Chronicles - August'25 Week I
Big Data Technologies - Introduction.pptx
MYSQL Presentation for SQL database connectivity
20250228 LYD VKU AI Blended-Learning.pptx
Reach Out and Touch Someone: Haptics and Empathic Computing
Spectral efficient network and resource selection model in 5G networks
Build a system with the filesystem maintained by OSTree @ COSCUP 2025

Cloud security - Auditing and Compliance

  • 2. What is Cloud Security  Cloud Security is a broad set of policies, technologies, and controls deployed to protect data, applications, and the associated infrastructure of cloud computing.
  • 3. Storage Auditing and Compliance  Compliance - Cloud service providers must comply appropriately with all the regulations within a country, regarding cloud security and data security.  Storage Auditing – Certain Auditing companies may audit a cloud service, making sure it meets regulations of Compliance
  • 4. Compliance Regulations  Regulations including FISMA, HIPAA, and SOX in the United States, and the credit card industry's PCI DSS.  Users may have to adopt community or hybrid deployment modes that are typically more expensive and may offer restricted benefits.
  • 5. SSAE 16 “Certification”?  SSAE 16 is an attestation standard put forth by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA)  There is no designation, certification, award, confirmation, or any other type of validation for an actual SSAE 16 assessment.
  • 6. Storage Auditing services  Storage Auditing services is provided by a 3rd Party Auditor and makes sure that your cloud computing data is secure and meets Compliance regulations
  • 8. What does it cost today?  Agiliance Continuous Compliance Service - $87,500 Per Year  Average PCI DSS audit cost - $225K Per Year
  • 9. What enhancements can be expected?  Enhanced Security regulations  Increased Customer privacy regulations  New regulations as Cloud Computing increases
  • 10. What industries will likely be impacted?  Companies implementing Cloud Services
  • 11. What products and services are likely to be impacted?  Cloud Services  PAAS  SAAS  IAAS  Etc.
  • 12. Who benefits from Cloud Compliance?  Large and Mid size companies offering Cloud Computing.  Compliance can reduce fees produced by Violations in regulations.  HIPAA Violations cost the health care industry over 1.5 Million in penalties each year.
  • 13. Multiple Choice Questions  What is Cloud Computing A. set of policies, technologies, and controls deployed to protect data, applications, and the associated infrastructure of cloud computing. B. regulations such as FISMA, HIPAA, and SOX in the United States C. provisions and policies adopted by the network administrator
  • 14. What is Cloud Compliance A. Regulations regarding Cloud Security and Data Security B. An auditing service dedicated to cloud computing C. Enhancing Security in a network
  • 15. The average PCI DSS audit cost is $30K Per Year A. True B. False
  • 16. FISMA, HIPAA, and SOX are all Cloud Compliance Regulations A. True B. False
  • 17. Which companies that Offer Cloud Services are most affected by Cloud Compliance A. Large and mid-size companies B. Small Companies C. No one is affected