The cloud security debate

September 2011 News

Security is probably the biggest bane in an IT professional’s life, particularly in light of the number of high profile hackings that have taken place over the past few of months. Security breaches seem to be growing in both frequency and stature and this creates concern for any organisation.

Cloud computing and virtualisation are taking global markets by storm, but there are a number of concerns relating to security that are preventing organisations from fully embracing these technologies. “Companies are often nervous about cloud computing and the security of their data in the cloud, particularly in light of stringent corporate governance rules,” says Lizelle Christison, exhibition manager of IP EXPO at Montgomery Africa. “One of the major concerns is the lack of clarity around who is ultimately responsible for the security of their data once it has been moved into a cloud environment. Other concerns include confusion around the legalities of where the data is hosted and a general sense of loss of control over a company’s information, effectively the life-blood of their organisation.”

Lizelle Christison
Lizelle Christison

Cloud computing services are generally delivered in three different models, namely Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS) or Infrastructure-as-a-Service (IaaS). “The first two models typically place responsibility of data security on the shoulders of the service provider as they own most of the IT and security stack.”

Infrastructure-as-a-Service on the other hand lends itself more toward shared responsibility. “Here the service provider will provide some level of baseline security such as firewalls and load balancing, but the responsibility of securing the individual organisation’s data generally falls with the enterprise.”

This adds a new level of complexity to the negotiation of terms and agreements between organisations and their cloud service providers. “It is critical that terms and conditions of CSP agreements are carefully negotiated and checked to ensure that responsibilities in terms of security are adequately understood and met,” says Christison. Enterprises should also investigate additional security measures for their data in the cloud.

Security is one of the key issues that will be discussed at this year’s IP EXPO, taking place on 15 and 16 November at Sandton Convention Centre. “Security is one of the underlying themes that runs across the three seminar streams – IP Networks, Virtualisation and Cloud Computing – and will therefore come under scrutiny from a number of angles,” Christison concludes.

Hi-Tech Security Solutions is hosting a Security Debate on Day 2 of the IP EXPO, where a number of these issues will be debated among leaders in the security industry.

For more information, visit

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Paxton opens first experience centre in South Africa
Paxton News Access Control & Identity Management
The new Paxton Experience Centre in Johannesburg is now open and welcoming security installers and end users who want to see Paxton’s products in action.

Paratus signs re-seller agreement with Starlink for Africa
News IT infrastructure
Pan-African telco and network services provider Paratus Group announced it has entered an agreement as a distributor for Starlink’s high-speed services across the African continent, available immediately in Mozambique, Kenya, Rwanda and Nigeria.

4IR is opportunity
In South Africa, digitalisation remains ‘at a nascent stage’ which means significant work still has to be done when it comes to addressing skills development around 4IR in the country.

Five ways to reduce your cyber insurance premiums
Security Services & Risk Management News
With the global costs of cybercrime expected to soar to $13 trillion within the next five years, cyber insurance is booming as organisations try to mitigate the risk of financial losses.

Client satisfaction boosted by 85% at Thungela Mine
Thorburn Security Solutions News Security Services & Risk Management Mining (Industry)
Thorburn Security, a division of Tsebo Solutions Group, has announced its recent collaboration with Kwa-Zulu Natal security company, Ithuba Protection Services, as part of its Enterprise Supplier Development (ESD) initiatives across Africa.

Fidelity SecureFire steps into critical fire response space
News Fire & Safety
With the majority of fire stations around the country being crippled by a lack of resources to offer effective responses, Fidelity Fire Solutions has launched its own ‘first responder’ model, Fidelity SecureFire.

The state of edge security report
News IT infrastructure
Edge computing has grown from being a niche use case in a handful of industries to offering a major opportunity for enterprises across industries to spread computing power around the world.

CHI selects NEC XON as trusted cybersecurity partner
News Cyber Security Industrial (Industry)
CHI Limited, Nigeria's leading market player in fruit juices and dairy products, has engaged in a strategic cybersecurity partnership with NEC XON, a pan-African ICT systems integrator.

Collaboration delivers integrated and holistic security
Guardian Eye CCTV, Surveillance & Remote Monitoring News Integrated Solutions
Guardian Eye and Lytehouse have partnered to integrate their speciality solutions and provide a holistic security offering that overcomes the fragmentation of security systems and services.

Kaspersky appoints new GM for Africa
News Cyber Security
Kaspersky has announced the appointment of Andrew Voges as the new General Manager for Africa to boost regional market positioning and enterprise protection.