Channel Partners

FAL 2015

For 25 years, Channel Partners has been a resource for indirect sales channels, such as agents, VARs and dealers, that provide network-based communications and computing services, associated CPE and applications, and managed and professional services

Issue link: http://digital.channelpartnersonline.com/i/547617

Contents of this Issue

Navigation

Page 37 of 47

Not that any network is bulletproof. Even the very biggest providers aren't perfect. As a cloud reseller or implementer, it's on you to verify that service offerings are configured properly. That entails an understanding of cloud providers' underlying networks, which, as we discuss in "Want to Make More Rain? Squeeze the Big Clouds," starting on Page 8, are constructed very differently and vary in how they implement security. A customer that depends heavily on Active Directory may be better off on Azure than AWS, for example, while an RHEL shop might prefer IBM SoftLayer, which incorporates OpenStack-based object storage. Furthermore, the vast variety of cloud options make it entirely possible that a standard service, secure by default, could become vulnerable based on uninformed decisions. You can completely undermine the security of Amazon EC2 by choosing a poorly configured third-party Amazon Machine Image. To combat that, cloud providers are using security frameworks like the Cloud Security Alliance's (CSA) Security, Trust & Assurance Registry (STAR), which GOLD STAR SECURITY Don't have a full-time security team? Don't fret; you can use the Cloud Security Alliance STAR registry, at cloudsecurityalliance.org/ star, to find a partner that has passed the CSA's deep security scrutiny. PERP WALK BINGO Moving data to the cloud does not shift responsibility for compliance, and running afoul of regulations can be costly at best. At worst, execs can go to jail. GRAMM-LEACH-BLILEY ACT The FTC can impose fines of $10,000 per incident; 10 years' probation with annual audits; defense discovery and legal costs. HIPAA Fines up to $1.5 million, depending on the severity and frequency of the offense, plus defense discovery and legal costs. SARBANES-OXLEY ACT The SEC can impose federal civil fines and ask for up to 20 years in federal prison for executives. PCI Payment brands may fine an acquiring bank $5,000 to $100,000 per month for PCI compliance violations, a hit that will most likely be passed on to merchants. DATABASE: 50K+ Agents, VARS, Solution Providers, Consultants, Distributors, Resellers, Carriers, CLECs, Prepaid Distributors, International Agents-PTT's-Telcoms Targeted Telecom M Done Right. DESIGN: HTML-Print-Web-PR iAgentNetwork offers the best graphic designers, art directors, coders, writers and editors - all specializing in telecom. DELIVERY: UP TO 30% Since 2001, iAgentNetwork e-blasts consistently garner open rates as high as 30%. PROVEN RESULTS Whether your company is big or small, iAgentNetwork has a marketing package to fit your budget. + + = (877) 867-2553 | info@iagentnetwork.com NEW! www.iAgentNetwork.com The Channel's only aggregated website delivering the latest news, promos, press releases, webinars, shows, job has become the gold standard for cloud providers in terms of security controls and standards. Such guidelines have helped CSPs greatly enhance their default settings and what options are even available for configuration. For example, AWS offers a secure hardware security module to generate encryption keys and fine-grained access-control policy capabilities. However, information security entails more than just which configuration settings you enable in the cloud or what encryption protocols may be used. Understanding where the cloud provider's security stops 18 CHANNEL PARTNERS FALL 2015 COVER

Articles in this issue

Links on this page

Archives of this issue

view archives of Channel Partners - FAL 2015