The Cloud Security Alliance was commissioned by Anjuna to develop a survey and report to better understand the industry’s knowledge, attitudes, and opinions regarding sensitive data in the cloud. Anjuna financed the project and co-developed the questionnaire by participating with CSA research analysts. The survey was conducted online by CSA in April 2022 and received 452 responses from IT and security professionals from various organization sizes and locations. CSA’s research team performed the data analysis and interpretation for this report.
Goals of the Study The goal of this survey was to understand the following:
• Cloud use and data security needs • Security priorities and challenges for the next year • Approach to hosting sensitive data and workloads in the cloud • Familiarity with cloud and data security technologies
Cloud Security Alliance’s Top Threats reports have traditionally aimed to raise awareness of threats, risks, and vulnerabilities in the cloud. Such issues are often the result of the shared, on-demand nature of cloud computing.
In this sixth installment, CSA surveyed 703 industry experts on security issues in the cloud industry. This year the respondents identified eleven salient threats, risks, and vulnerabilities in their cloud environments. The Top Threats Working Group used the survey results and its expertise to create the 2022 Top Cloud Threats report – the ‘Pandemic Eleven’.
Cloud Security Alliance Hong Kong & Macau Chapter is the supporting organisation of these two courses organised by the Hong Kong Productivity Council. Our member will receive special discount when joining these courses:
Securing Public Cloud Deployment The unforeseeable pandemic has accelerated digital transformation of many corporations. Some of them will consider migrating their company data from premise servers to cloud services. However, IT practitioners should be aware of the potential risks and security threats of this move. HKPC will soon host the “Securing Public Cloud Deployment” 2-day training course. This intensive course will cover practical knowledge to deploy web applications in typical public cloud environments as well as theories and hands-on cases of cloud-based architecture design and management.
Securing PaaS Cloud Deployment There are more and more software developers use Serverless PaaS cloud computing to deploy containerised applications these days. If you want to enjoy the convenience of the cloud computing and keep your application safe, you are recommended to join the upcoming “Securing PaaS Cloud Deployment Cloud” course hosted by HKPC. Experts in the field will provide you with practical knowledge of deploying microservices with Dockers and Kubernetes securely in a public cloud environment.
We have not met or arrange knowledge sharing last year. The Covid-19 virus created a long social distance for us to group together. But as we all know Cloud Environment is changing so fast, if we don’t keep up our knowledge together, we will be left behind.
In the past 6 months, I participated in a number of CCSP and CCSK training and coaching in Hong Kong and Asia Pacific region. We can see that more and more people are using cloud computing environment. Usually, security specialists will ask the following questions – How can we secure our applications and infrastructure in our cloud environment? How can we support the multi-cloud environment? How can we make use of container environment to build up a secure and portable application? Any standard that can we use in cloud security assessment and audit?
Definitely, as we get together we will have more and more questions, idea, and knowledge that we can share.
So CSA HK&M chapter after the formation of our new council and committee for 2020, we would like to bring our knowledge sharing to another new platform for the new normal environment.
In this series of coming activities, CSA HK&M knowledge sharing session will become monthly regular lunch time webinar mode. The first event will be on “Securing your Virtual Bank in the Cloud” by the Security team of Welab. They definitely will be able to share their experience and idea about the virtual bank.
Stay tune for new updates.
Ricci IEONG, Vice Chairman Professional Development
Kelvin WONG, Education Director (Hong Kong)
Kevin LAM, Education Director (Macau)
To recognise and encourage female role models and to attract more females to join ICT industry, the FACE Club of Hong Kong Computer Society (HKCS) launched the first-ever “Outstanding ICT Women Awards” to reward the much praised female individuals in the ICT field and to showcase the impact that they have made to the local ICT industry and the community.
In the ever-changing world of the cloud, you face unique security challenges every day — from new threats to sensitive data, to uneducated internal teams. The Certified Cloud Security Professional (CCSP) recognises IT and information security leaders who have the knowledge and competency to apply best practices to cloud security architecture, design, operations and service orchestration. It shows you’re on the forefront of cloud security.
The next CCSP course in Hong Kong will be organised in March 2020:
17-19 & 24-25 March 2020,
1/F, HKPC Building,
78 Tat Chee Avenue,
Kowloon, Hong Kong
Cantonese with handout in English
For people who interested in cyber security
CSA HKM members are entitled to special discount for the course. Click HERE for details.
Cloud Security Alliance supports CLOUDSEC, the leading internet security conference in Asia Pacific and Europe, on a regional basis. The Hong Kong event will be held on August 27, 2019 at the Hong Kong Convention & Exhibition Center.
CLOUDSEC Hong Kong 2019 gathers together renowned experts, industry thought leaders, businesses and organizations from across the globe to re-evaluate and redefine their understanding of threats, risks and solutions in a rapidly evolving threat landscape.
With a theme of “Picture This! See. Secure. Go further.”, CLOUDSEC Hong Kong 2019 provides an avenue for enterprises and organizations to discuss and collectively address issues such as the increasingly complex cyber-attacks, shifting IT environments, and the upcoming trends in the computing and threat landscape.
Katie Lewin, Federal Director of Cloud Security Alliance will present as a keynote speaker and Ian Christofis, founding board member of CSA HKM, will host a panel discussion entitlted “Seeing CyberSecurity” during the event.
Date: August 27, 2019 (Tuesday) Time: 8:45 – 17:00 Venue: N201, Hong Kong Convention & Exhibition Center, Wanchai Registration: www.cloudsec.com/hk Admission Fee: FREE