End-to-end view of user identity and behavior (application and database):
Security teams responsible for data protection
Understand cloud architecture security
Quick response
Cloud:
Monitoring across cloud architectures:
Log files and monitoring tools:
Visualize events with dashboards
Alerts: reactive to proactive response
Security intelligence
Monitoring aids audit
Ensure compliance
Aids rapid threat resolution
Common issues:
1. Visibility
Service adoption needs coordination
Maintain visibility
Affects security
Cloud sprawl
Cloud resources can have short lifecycle
Legacy practices lack security
Security and authorization controls
Security policy
Reduce cloud sprawl through ITIL practices:
2. Compliance
Compliance is difficult
CSP can document compliance
Only applies to CSP responsibilities
CSPs can´t comply with every standard
Consumer must evaluate compliance
Consumer responsible for compliance within its environment
Compliance tips:
Understand:
3. Automation
Seen as security risk
Allows proactive security management
Consistent security application
Allows security staff to focus on high-value tasks
4. Development vs security
Development focuses on speed
Security desires thorough review
Creates silos
Common security rules
Collaboration between development and security
5. Hybrid IT
Multiple security policies
Different security practices
Tools and practices based on legacy systems
Don´t work with cloud
For example:
Mitigations:
6. SLAs
SLAs affect:
Set availability
Outlines what´s not provided
Effective SLAs:
Establish criteria
Evaluate criticality of cloud service
Identify key management activities
Go back to ITIL 4 Acquiring Managing Cloud Services Certification Course: Onboard to finish this chapter or to the main page ITIL 4 Acquiring Managing Cloud Services Certification Course.
When you are managing a team, “how to be a good manager” is the “must”...
As manager, I am doing many reports, even when I was an ITIL consultant, I still needed to do many reports...
ITIL V3 is going to be obsolete...
Managing an IT service when I start a new company is not an easy task, particularly true, if the service...