ENISA
https://www.enisa.europa.eu
Cloud Security Guide for SMEs
https://www.enisa.europa.eu/publications/cloud-security-guide-for-smes
This guide wants to assist SMEs understand the security risks and opportunities they should take into account when procuring cloud services. This document includes a set of security risk, a set of security opportunities and a list of security questions the SME could pose to the provider to understand the level of security. The risks and opportunities are linked to the security questions so the end result is customised according to the user's needs and requirements. This information is supported by two example use cases and an annex that gives an overview of the data protection legislation applicable and the authorities involved in each country. No publisherCloud Computing SecuritySMEs2015/04/10 09:00:00 GMT+2Report/StudySecure Use of Cloud Computing in the Finance Sector
https://www.enisa.europa.eu/publications/cloud-in-finance
In creating this report we analysed input from a number of different sources to better understand the usage of cloud services in the finance sector. Based on the analysis we provide recommendations to financial institutions, regulators and cloud service providers about what we believe should be done to support secure adoption of cloud services in the finance sector.No publisherCloud Computing Security2015/12/07 00:00:00 GMT+2Report/StudyBig Data Security
https://www.enisa.europa.eu/publications/big-data-security
The study aims at identifying the key security challenges that the companies are facing when implementing Big Data solutions, from infrastructures to analytics applications, and how those are mitigated. The analysis focuses on the use of Big Data by private organisations in given sectors (e.g. Finance, Energy, Telecom). However, more institutions (e.g. research centres, public organisations, and government agencies) has been considered as well.No publisherCloud Computing SecurityBig Data2016/03/08 00:00:00 GMT+2Report/StudySecurity and Resilience in Governmental Clouds
https://www.enisa.europa.eu/publications/security-and-resilience-in-governmental-clouds
Cloud computing offers a host of potential benefits to public bodies, including scalability, elasticity, high performance, resilience and security together with cost efficiency. Understanding and managing risks related to the adoption and integration of cloud computing capabilities into public bodies is a key challenge. Effectively managing the security and resilience issues related to cloud computing capabilities is prompting many public bodies to innovate, and some cases to rethink, their processes for assessing risk and making informed decisions related to this new service delivering model. This report identifies a decision-making model that can be used by senior management to determine how operational, legal and information security requirements, as well as budget and time constraints, can drive the identification of the architectural solution that best suits the needs of their organisation. The main objectives of the report are: • to highlight the pros and cons, with regard to information security and resilience, of community, private and public cloud computing delivery models; • to guide public bodies in the definition of their requirements for information security and resilience when evaluating cloud computing service delivery models; Moreover this report wants to indirectly to support European Union Member States in the definition of their national cloud strategy with regards to security and resilience. No publisherCloud Computing Security2011/01/14 15:25:00 GMT+2Report/Study