Securing Your Journey tothe Cloud
Managing security across platforms todayand for the future
Table of Contents
This paper has been written by Macarthur Stroud Internationalwww.macarthurstroud.com
P h y s i c a l
–
V i r t u a l - C l o u d
© Copyright Macarthur Stroud International 2011
1
Executive summary
Business drivers are changing the face of information technology. Virtualisation andcloud computing are optimising resources, saving costs, and offering new andexciting ways of delivering 24x7 services. Working practices are also evolving withthe impact of consumerisation and the adoption of mobile devices, iPads, tablets,and smartphones, alongside laptops and desktops. Although providing significantbusiness benefits, these changes are creating challenges as organisations secureand manage their diverse and dynamic system infrastructure, including physicalservers and endpoints, virtualisation, and cloud services.Each company is on a unique journey to implement new IT services to support itsbusiness objectives. As businesses deploy new virtualisation, cloud computing, andendpoint architecture, security must be an integral part of the implementation.Threats to the IT infrastructure can impact businesses severely. Securing againstthese threats of virus attacks, inappropriate usage, and data loss is making allorganisations review and upgrade their risk and security strategies. Also, meeting theregulatory and legal demands as they are embodied within the rules of corporateand information governance add yet one more dimension to securing these newinfrastructures.Many companies may believe that they can deploy their current physical securitysolutions in their consumerised, virtualisation and cloud computing environments.However, migrating traditional security approaches to new system infrastructurescreates real performance and service issues. In addition, traditional physical securitydoes not address the security risks unique to virtual and cloud computingenvironments.Organisations need a security solution that is designed to protect these newapproaches to information technology. The solution must:
Be fully virtual machine aware and integrated with leading virtualisationplatforms.
Secure against platform-specific threats and preserve performance.
Deliver integrated security, for example, server security should includeantimalware tools, encryption, event logging, secure system patching andupgrading and verifying the integrity of all information in files and databases.
Address the unique aspects of physical servers, desktops and consumerisedendpoints, virtualisation, and the cloud, provided in an integrated solution withone management console across all platforms.Wherever the business is on its journey to the cloud, it needs a security solution thatwill protect it today and as its data centre and endpoints continue to evolve in thefuture. System complexity is increasing and businesses need security they can trust.Businesses should look to a provider that has data centre, endpoint and clouddelivery options to support businesses as needs evolve. This will avoid costlyretraining, allow for long-term planning, and lead to the foundation of a long termstrategic business relationship.
Virtualisation andconsumerisation arecreating new demandsto secure the systeminfrastructureEach company is on aunique journey to secureits systems and processesagainst threats andmeet regulatory needsand rules of corporateand informationgovernanceSolutions must be:
Fully virtual machineaware
Secure against threats
Preserve performance
Integrate securityacross physical, virtualand cloudinfrastructures
© Copyright Macarthur Stroud International 2011
2
Journey to the cloud varies, but challenges are shared
Containing costs and improving utilisation of computing resources is driving newsystem architectures. Each business will embark on its own journey as its systeminfrastructure changes. The route adopted and timeframes will vary from business tobusiness, but the challenges and imperatives are recognised by all.Overlaid with high performance networks, the system infrastructure is evolving fromphysical servers and storage devices to virtualised resources located within the datacentre, at a preferred partner, or resident in the cloud. In addition, users are nowaccessing systems from smartphones, tablet devices, physical and virtual desktops,and laptops. The demands on CIOs and system managers are ever increasing todeliver secure and trusted services.All organisations have established a system infrastructure to support their businessneeds. Priorities are set by the business in order that customers can be serviced,suppliers can be supported and employees work effectively to meet the service,profit and revenue goals. Examples of how system infrastructures evolve include:
An insurance company started to consolidate its server and storage resources,with server virtualisation and storage networks to reduce operational costs. Inthe process, the data protection practices needed to be enhanced. Thebackup and recovery was outsourced to a trusted cloud service, protecting thedata centre infrastructure, the mobile sales force and insurance assessors.To encompass a more flexible way of working, the company had toenable home working as well as link independent sales agents andinsurance brokers. Desktop virtualisation is being deployed to supportthe extended enterprise, accessing standard, approved processes witha consistent set of security policies.
A distribution company has to link its systems more tightly with themanufacturers and distributors with which it works. As the lead time tocompile van and lorry manifests reduces from one month to 1-5 days,the business needs to be responsive as well as increase its overallservice levels.
This was achieved by linking systems with suppliers which applied anew level of security. The company had to ensure the integrity ofits own databases was not compromised. This led to a realignmentof its physical and virtual servers. New security systems and
practices were introduced to comply with its customers’
ecosystems. These security processes had to support acceptanceand confirmation of goods collected and goods delivered.
The company was already using a cloud service provider to track its vehiclesinternationally. It is now looking to extend this capability to speed upcollections and deliveries by tracking pallets, crates and individual packages.
Security architectures must flex with the business
Securing these new infrastructures and addressing the risk of how systems aremanaged is of increasing concern throughout all organisations, right to theboardroom. Personal details are being stolen, data centres and industrial plants are
As each organis
ation’s
system infrastructureevolves, the challenges,governance standardsand operationalpractices, that have tobe addressed, are recognised by all
CustomersSuppliersEmployeesCloudVirtualPhysical
Distribution CompanySecuring its Infrastructure
Search History:
Result 00 of 00
00 results for result for
p.
Discover Strategies for Securing Your Cloud Journey
As organizations begin to deploy new virtualization, cloud computing and endpoint architectures, security must be an integral part of implementation. This paper explores how to manage security across all platforms within your organization, and the key functions a security solution must have to protect new IT environments.
101
Reads
0
Readcasts
35
Embed Views
Get Scribd Mobile
To get Scribd mobile enter your number and we'll send you a link to the Scribd app for iPhone & Android.We've sent a link to the Scribd app. If you didn't receive it, try again.
We'll never share your phone number.
More From This User
Notes
Load more
