Which of these is a customers responsibilities in the shared responsibility model for security?
Resources > Security Terms Glossary > What Is a Shared Responsibility
Model? A shared responsibility model is a cloud security and risk framework that delineates which cybersecurity processes and responsibilities lie with a cloud service provider (CSP) and which lie with the customer. With more IT architectures moving to the cloud, a shared responsibility model promotes tighter security and establishes accountability as it relates to the security of the cloud.
In an on-premises data center environment, security responsibility rests solely with the owner. Accountability for maintaining security controls, patching, and physical infrastructure falls to the organization’s security team (or other responsible party, such as IT), never the hardware vendor(s). However, when portions of a network use or are composed of private or public cloud services,
some security responsibilities fall to the CSP. This is where a shared responsibility model comes in, outlining precisely which security duties, data states, locations, and so on are in the CSP’s domain and which are in the customer’s. Microsoft Azure, Google Cloud, Amazon Web Services (AWS), and other CSPs each have their own model, tailored to their specific offerings. Most shared responsibility models hold you, the customer, responsible for anything under your direct control: data, credentials, and configurations, as well as any functionality that sits outside the CSP’s cloud resources, such as your organization’s firewalls and other internal network security. A lack of clarity around responsibilities can contribute to misconfigurations that weaken your security posture and ultimately cause cloud security
failures, so it’s critical that you understand where your organization’s security duties lie in relation to your providers’. How responsibility is divided depends on the type of cloud service you’re using. You’ll always be responsible for securing your data, devices, accounts, and access management. Likewise, CSPs will always be responsible for securing the physical infrastructure—their
hosts, data centers, and networks. Let’s look at where other differences come into play: Advantages of a Shared Responsibility ModelIn itself, the reduced customer responsibility of a cloud service is a major benefit when compared to the total liability you take on with your private on-premises infrastructure, but there’s more to be had. Sharing cloud security responsibility with a service provider also lets you take advantage of:
Challenges of Shared ResponsibilityAdopting the cloud and sharing responsibility has plenty of advantages, but there are still certain potential challenges to consider. Compliance and Ultimate
Responsibility Understanding and Adapting Shared Responsibility Best PracticesThe best practices specific to a given responsibility model come down to your unique needs and the provider’s offering, but there are some general practices to keep in mind in any shared security responsibility situation:
How Can Your Organization Stay Secure in the Cloud?The cloud is where modern business lives. Few would debate that. What’s equally undeniable, though, is that using cloud services opens up your users, endpoints, and data to new risks. A crucial piece of protecting yourself from those risks is ensuring you completely understand your security responsibilities. That’s only one piece, however. Holding up your responsibilities can be a daunting proposition when you’re dealing with third-party partners, multiple supply chains, and the growing risks of ransomware, phishing, and other advanced attacks that target your endpoints, credentials, and data. These facets of your security will always fall to you, and with so many possible avenues for attacks and data loss, it’s paramount that you choose the right security partners. Secure Your Digital Transformation with ZscalerZscaler can help you take advantage of all the cloud has to offer—flexibility, scale, reach, ease of use, and more—securely. Posture Control by Zscaler is a unified, high-performance, cloud native platform built from the ground up to prioritize infrastructure and application security risks in distributed clouds and across the development and DevOps lifecycles, helping you maintain: Secure Configurations Learn more Secure Entitlements Learn more Secure
Infrastructure as Code Learn more Secure Data Learn more Secure Workloads and Applications Learn more SaaS, IaaS, and PaaS: What the shared responsibility model means for zero trustRead the blog What Is a Cloud Native Application Protection Platform (CNAPP)?Read our article Posture Control for Cloud Native Applications: At a GlanceTake a look What is the shared security responsibility model?The Shared Responsibility Model is a security and compliance framework that outlines the responsibilities of cloud service providers (CSPs) and customers for securing every aspect of the cloud environment, including hardware, infrastructure, endpoints, data, configurations, settings, operating system (OS), network ...
Which of the following is the customer's obligation under the AWS shared responsibility model?According to AWS Shared Responsibility Model, AWS is responsible for the Security of the Cloud and the customer is responsible for the Security in the Cloud.
What is a customer responsibility under the AWS shared responsibility model when using AWS Lambda?Shared responsibility
Customers themselves are responsible for the security of their code, the storage and accessibility of sensitive data, and identity and access management (IAM) to the Lambda service and within their function.
What is the responsibility of shared responsibility?Sharing responsibility means not telling people what to do but ensuring that everyone feels personally accountable for the future success of the organisation.
|