Cloud Risks

Virtualisation has created global computing resources that greatly exceed global computing needs and this provided an opportunity to sell that spare capacity cheaply. 'The Cloud' is a marketing term for the provision of these virtualised computing resources. Cloud computing is offered in different forms: public Clouds, private Clouds, and hybrid Clouds, which combine both public and private. Some vendors of security and analytics software solutions have moved towards providing services in the Cloud. Cloud computing presents organisations with a rich set of options and the Software/Platform/Infrastructure Cloud deployment model demands informed decisions around what to deploy, how and where. The three service options in the conventional Software/Platform/Infrastructure model and their attendant features from a risk management perspective are: Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). Cyber security risks in the Cloud can be divided by type: Cloud malware, Cloud attacks, and Co-location risks.