As departments and agencies move business operations to the cloud, protecting assets and data remains top priority. Identifying the steps and actions needed to structure, develop, and implement effective security controls in this new environment is the critical first step.Where should you start? How do you prioritize activities? How can you leverage existing IT programs, processes, and policies that are already in place?
Listen to FireEye’s Ron Bushar, Vice President & CTO - Government Solutions, as he shares steps and best practices to building a cloud assurance program, including:
- Identifying roles and responsibilities of government, service provider, and third-party stakeholders
- Adapting existing data classification scheme for cloud services and establishing a cloud-adapted risk assessment process
- Implementing requirements baselines, risk assessments, and approaches to addressing unique risk scenarios
- Selecting a cloud service delivery and deployment model