With rapidly changing architecture and API-driven automation, cloud platforms come with unique security challenges and opportunities. In this updated second edition, you'll examine security best practices for multivendor cloud environments, whether your company plans to move legacy on-premises projects to the cloud or build a new infrastructure from the ground up.

Developers, IT architects, and security professionals will learn cloud-specific techniques for securing popular cloud platforms such as Amazon Web Services, Microsoft Azure, and IBM Cloud. IBM Distinguished Engineer Chris Dotson shows you how to establish data asset management, identity and access management (IAM), vulnerability management, network security, and incident response in your cloud environment.

• Learn the latest threats and challenges in the cloud security space
• Manage cloud providers that store or process data or deliver administrative control
• Learn how standard principles and concepts—such as least privilege and defense in depth—apply in the cloud
• Understand the critical role played by IAM in the cloud
• Use best tactics for detecting, responding, and recovering from the most common security incidents
• Manage various types of vulnerabilities, especially those common in multicloud or hybrid cloud architectures
• Examine privileged access management in cloud environments

Table of Contents

Chapter 1. Principles and Concepts

Chapter 2. Data Asset Management and Protection

Chapter 3. Cloud Asset Management and Protection

Chapter 4. Identity and Access Management

Chapter 5. Vulnerability Management

Chapter 6. Network Security

Chapter 7. Detecting, Responding to, and

Recovering from Security Incidents

Appendix. Exercise Solutions

About the Author

Chris Dotson is an IBM Distinguished Engineer and an executive security architect in the IBM CIO organization He has 11 professional certifications, including the Open Group Distinguished IT Architect certification, and over 25 years of experience in the IT industry. Chris has been featured as a cloud innovator on the https://www.ibm.com home page several times; his focus areas include cloud infrastructure and security, identity and access management, networking infrastructure and security, servers, storage, and bad puns.