SlideShare a Scribd company logo

Incident Response in the Cloud

Download as PPTX, PDF
Brian Honan, profile picture
Brian Honan

This document discusses cloud security and incident response. It outlines the traditional approach to incident response, and how this must change in the cloud where data is distributed across different jurisdictions and vendors. It stresses the importance of establishing clear roles and responsibilities between an organization and its cloud service provider, including agreeing on policies, procedures, access to logs and tools for incident response. It also recommends establishing relationships and practicing incident response plans with cloud providers.

Technology
Related topics:
Incident ResponseCloud Security Insights
1 of 33
Downloaded 38 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
Helping You Piece IT Together http://www.bhconsulting.ie info@bhconsulting.ie Incident Response & Cloud Security
Who Am I? Brian.honan@bhconsulting.ie www.bhconsulting.ie www.twitter.com/brianhonan www.bhconsulting.ie/securitywatch
Business View of The Cloud
Vendor View of the Cloud
Security View of the Cloud 5
Stuff Happens !!
Traditional Incident Response Detect Contain Eradicate Remediate Recover Review Communicate
Traditional IR
Cloud Incident Response
How Do You Contain Cloud?
Where is Your Data?
Data Protection & Privacy
Change of Mindset
Change of Mindset
Same IR Principles Detect Contain Eradicate Remediate Recover Review Communicate
Engage Early with Business
Ensure IR Requirements in T&Cs
Establish Team Information Security Operations Human Resources Legal Public Relations Facilities Management CSP
Establish Relationships
Agree Roles & Responsibilities
Agree Policies & Procedures
Agree Jurisdictional Issues
Agree Disclosure Rules
Notification in Place
Set up Alerting Mechanisms
Access to Logs
Other Alerting Mechanisms
Identify Tools
Practise Makes Perfect
Agree Testing
Review & Measure
Questions To CSP  Will the CSP Give You Access to Log Files, Including RAW Data?  What Is the CSP’s SLA?  Are Security Demarcations Clearly Understood?  What Are the CSP preventative measures?  DDOS Mitigation  Security Monitoring,  Alert You of Breach  IR Plan
Questions ? @brianhonan

More Related Content

PDF
How to Build a Privacy Program
secratic
 
PPTX
Privacy, Security + Risk: Case Studies + Best Practices for Your Company
Kegler Brown Hill + Ritter
 
PDF
Cultivate a stronger corporate culture to enhance cybersecurity
David X Martin
 
PPTX
15 Social Media Secrets in 15 Minutes Digital Megaphone Social Media & PR Mon...
Jeff Willinger
 
PDF
10 Tips for CIOs - Data Security in the Cloud
Peak 10
 
PDF
Salesforce & GDPR: What happens next?
Desynit
 
PDF
"Overcoming the Fear: What C-Level Execs are Afraid of When it Comes to Socia...
Blend Interactive
 
PDF
I-Week April 2004 - Claudia Warwar
Claudia Warwar
 
How to Build a Privacy Program
secratic
 
Privacy, Security + Risk: Case Studies + Best Practices for Your Company
Kegler Brown Hill + Ritter
 
Cultivate a stronger corporate culture to enhance cybersecurity
David X Martin
 
15 Social Media Secrets in 15 Minutes Digital Megaphone Social Media & PR Mon...
Jeff Willinger
 
10 Tips for CIOs - Data Security in the Cloud
Peak 10
 
Salesforce & GDPR: What happens next?
Desynit
 
"Overcoming the Fear: What C-Level Execs are Afraid of When it Comes to Socia...
Blend Interactive
 
I-Week April 2004 - Claudia Warwar
Claudia Warwar
 

What's hot (8)

PPT
Resolving Conflicts Between Security Compliance and Human Behaviour
neicher
 
PDF
Preparing Your Company for a Privacy Rebellion
LexisNexis
 
PDF
Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on...
IBM Security
 
PPT
Security Problem With Cloud Computing
Martin Bioh
 
PPT
Security Problem With Cloud Computing
Martin Bioh
 
PPTX
Watchful-Corporate-Overview-Q1-16
Ravindran Vasu
 
PDF
Getting a clue: uncovering the truth about your data with mobile forensics
Druva
 
PPTX
Security Tips For A Safer Workplace
bradclark365
 
Resolving Conflicts Between Security Compliance and Human Behaviour
neicher
 
Preparing Your Company for a Privacy Rebellion
LexisNexis
 
Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on...
IBM Security
 
Security Problem With Cloud Computing
Martin Bioh
 
Security Problem With Cloud Computing
Martin Bioh
 
Watchful-Corporate-Overview-Q1-16
Ravindran Vasu
 
Getting a clue: uncovering the truth about your data with mobile forensics
Druva
 
Security Tips For A Safer Workplace
bradclark365
 
Ad

Viewers also liked (20)

PPTX
Presentation on EU Directives Impacting Cyber Security for Information Securi...
Brian Honan
 
DOCX
NIS : l’Europe se dote d’un plan de bataille contre le piratage informatique
ITrust - Cybersecurity as a Service
 
PPT
CTO-CybersecurityForum-2010-Andrea Gloriso
segughana
 
PDF
Protecting Europe's Network Infrastructure
European Union Agency for Network and Information Security (ENISA)
 
PDF
Developers are from Mars, Security guys are from Venus
Xavier Mertens
 
PDF
2016 02-14-nis directive-overview isc2 chapter
isc2-hellenic
 
PPTX
Advanced OSSEC Training: Integration Strategies for Open Source Security
AlienVault
 
PDF
Cybersecurity isaca
Antoine Vigneron
 
PDF
Long Life Bicycles
Silen disco
 
PDF
Hot Topics For 2010
Brian Honan
 
PDF
Scare Ware From Ireland
Brian Honan
 
PPT
eTwinning - lyhyt johdatus työpajatyöskentelyyn
Tiina Sarisalmi
 
PDF
The Case for Mandatory Data Breach Disclosure Laws
Brian Honan
 
PPT
Cloud security
Brian Honan
 
PPT
eTwinning Professional Development 2011
Tiina Sarisalmi
 
PPTX
Using Moodle to Support Differentiated Instruction
yeske.patricia
 
PPT
Polish Cuisine Book
Tiina Sarisalmi
 
PPT
Cineas Corso Taylor Made Per Zurich 28 Aprile 2010 Ramo Malattia
Marco Contini
 
PPT
Kansainvälisyys ja verkko-oppiminen
Tiina Sarisalmi
 
PDF
Finnish Easter
Tiina Sarisalmi
 
Presentation on EU Directives Impacting Cyber Security for Information Securi...
Brian Honan
 
NIS : l’Europe se dote d’un plan de bataille contre le piratage informatique
ITrust - Cybersecurity as a Service
 
CTO-CybersecurityForum-2010-Andrea Gloriso
segughana
 
Protecting Europe's Network Infrastructure
European Union Agency for Network and Information Security (ENISA)
 
Developers are from Mars, Security guys are from Venus
Xavier Mertens
 
2016 02-14-nis directive-overview isc2 chapter
isc2-hellenic
 
Advanced OSSEC Training: Integration Strategies for Open Source Security
AlienVault
 
Cybersecurity isaca
Antoine Vigneron
 
Long Life Bicycles
Silen disco
 
Hot Topics For 2010
Brian Honan
 
Scare Ware From Ireland
Brian Honan
 
eTwinning - lyhyt johdatus työpajatyöskentelyyn
Tiina Sarisalmi
 
The Case for Mandatory Data Breach Disclosure Laws
Brian Honan
 
Cloud security
Brian Honan
 
eTwinning Professional Development 2011
Tiina Sarisalmi
 
Using Moodle to Support Differentiated Instruction
yeske.patricia
 
Polish Cuisine Book
Tiina Sarisalmi
 
Cineas Corso Taylor Made Per Zurich 28 Aprile 2010 Ramo Malattia
Marco Contini
 
Kansainvälisyys ja verkko-oppiminen
Tiina Sarisalmi
 
Finnish Easter
Tiina Sarisalmi
 
Ad

Similar to Incident Response in the Cloud (6)

PPTX
Incident response cloud
Brian Honan
 
PDF
Proactive incident response
Brian Honan
 
PPTX
Learning from History
Brian Honan
 
PDF
Incident response in Cloud
Vandana Verma
 
PPTX
Preparing for Failure - Best Practise for Incident Response
Brian Honan
 
PPTX
Checklist for Competent Cloud Security Management
Cloud Credential Council
 
Incident response cloud
Brian Honan
 
Proactive incident response
Brian Honan
 
Learning from History
Brian Honan
 
Incident response in Cloud
Vandana Verma
 
Preparing for Failure - Best Practise for Incident Response
Brian Honan
 
Checklist for Competent Cloud Security Management
Cloud Credential Council
 

More from Brian Honan (13)

PPTX
Brian honan ipexpo keynote
Brian Honan
 
PPTX
GDPR & Brexit - What Does the Future Hold?
Brian Honan
 
PDF
Ransomware Prevention Guide
Brian Honan
 
PPTX
Brian honan
Brian Honan
 
PPTX
The dark side of the internet
Brian Honan
 
PPTX
Data security brian honan
Brian Honan
 
PPTX
How to Like Social Media Network Security
Brian Honan
 
PDF
Bridging the air gap
Brian Honan
 
PPT
Best practises for log management
Brian Honan
 
PPTX
Layer 8 Security - Securing the Nut Between the Keyboard & Screen
Brian Honan
 
PPTX
Creating a CERT at WARP Speed
Brian Honan
 
PPTX
Ic Sconf2010presentation Dp Bh
Brian Honan
 
PPT
Knowing Me Knowing You
Brian Honan
 
Brian honan ipexpo keynote
Brian Honan
 
GDPR & Brexit - What Does the Future Hold?
Brian Honan
 
Ransomware Prevention Guide
Brian Honan
 
Brian honan
Brian Honan
 
The dark side of the internet
Brian Honan
 
Data security brian honan
Brian Honan
 
How to Like Social Media Network Security
Brian Honan
 
Bridging the air gap
Brian Honan
 
Best practises for log management
Brian Honan
 
Layer 8 Security - Securing the Nut Between the Keyboard & Screen
Brian Honan
 
Creating a CERT at WARP Speed
Brian Honan
 
Ic Sconf2010presentation Dp Bh
Brian Honan
 
Knowing Me Knowing You
Brian Honan
 

Recently uploaded (20)

PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PDF
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
PDF
DP Operators-handbook-extract for the Mautical Institute
LeonelMejiaLarios
 
PDF
Hybrid model detection and classification of lung cancer
IAESIJAI
 
PPTX
Modernising the Digital Integration Hub
Daniel Toomey
 
PPTX
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
PDF
August Patch Tuesday
Ivanti
 
PDF
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PDF
project resource management chapter-09.pdf
ssuser00e6e21
 
PPTX
observCloud-Native Containerability and monitoring.pptx
anupsingh76937
 
PDF
TrustArc Webinar - Click, Consent, Trust: Winning the Privacy Game
TrustArc
 
PDF
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PDF
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
PDF
Getting Started with Data Integration: FME Form 101
Safe Software
 
PDF
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
PDF
A contest of sentiment analysis: k-nearest neighbor versus neural network
IAESIJAI
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PDF
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
DP Operators-handbook-extract for the Mautical Institute
LeonelMejiaLarios
 
Hybrid model detection and classification of lung cancer
IAESIJAI
 
Modernising the Digital Integration Hub
Daniel Toomey
 
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
August Patch Tuesday
Ivanti
 
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
project resource management chapter-09.pdf
ssuser00e6e21
 
observCloud-Native Containerability and monitoring.pptx
anupsingh76937
 
TrustArc Webinar - Click, Consent, Trust: Winning the Privacy Game
TrustArc
 
Web App vs Mobile App What Should You Build First.pdf
KodekX
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
Getting Started with Data Integration: FME Form 101
Safe Software
 
From MVP to Full-Scale Product A Startup’s Software Journey.pdf
KodekX
 
A contest of sentiment analysis: k-nearest neighbor versus neural network
IAESIJAI
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 

Incident Response in the Cloud

Editor's Notes