Security News > 2024 > March > CISA, NSA share best practices for securing cloud services
The NSA and the Cybersecurity and Infrastructure Security Agency have released five joint cybersecurity bulletins containing on best practices for securing a cloud environment.
Today, the NSA and CISA have issued five join documents on how to secure your cloud services using best practices.
"The purpose of this cybersecurity information sheet is to explain some of the common threats to cloud identity management, and to recommend best practices organizations should employ to mitigate these threats when operating in the cloud."
"This CSI outlines key management options based on these factors and recommends best practices to consider when using them. With any use of a cloud KMS, it is critical to understand and document shared security responsibilities. Refer to the NSA CSI: Uphold the Cloud Shared Responsibility Model for additional information on the shared responsibility model."
"This cybersecurity information sheet makes recommendations for implementing these principles in a cloud environment, which can differ from on-premises networks. While on-prem networks require specialized appliances to enable ZT, cloud technologies natively provide the necessary infrastructure and services for implementing these recommendations to varying degrees. This CSI focuses on best practices using features commonly available in cloud environments."
"The purpose of this cybersecurity information sheet is to provide an overview of what cloud storage is and common practices for properly securing and auditing cloud storage systems."
News URL
Related news
- FBI, CISA, and NSA reveal most exploited vulnerabilities of 2023 (source)
- 7 PAM Best Practices to Secure Hybrid and Multi-Cloud Environments (source)
- CISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01 (source)
- CISA orders federal agencies to secure their Microsoft cloud environments (source)