Glass Class – 3 Essential Requirements for Securing IaaS
Hi, welcome to Glass Class. Today we’re going to be talking about infrastructure as a service or IaaS, and the three cornerstones of security that you need when your organization moves to IaaS platforms. Now IaaS like AWS, Azure, GCP, they provide a lot of scalability and efficiency to enterprises. But, you have to make sure that you do what’s necessary to secure them. So when you’re using an IaaS platform, there are three things you need to consider.
One, data at rest. Now these platforms, they house a lot of data inside of things like blobs and buckets and all that kind of fun stuff. And you have to make sure that you can detect sensitive data patterns at rest and then put controls around that data. Number two, custom applications. Custom apps are things that your organization builds because it knows exactly the type of tool that it wants to use. And you have to make sure that you’re securing access to these applications as your employees are using them. And finally, CSPM. CSPM stands for Cloud Security Posture Management. And this entails scanning IaaS instances for misconfigurations that are associated with established benchmarks. And the good news is CASBs, Cloud access security brokers, they provide everything you need to secure IaaS. Thanks for watching Glass Class.