Cloud solutions are entering mainstream with vendors of all sizes flocking to build and dliver services in the cloud due to the economic and technical advantages of this model gained at all levels. This new paradigm, however, requires a new thinking in security, auditing and compliance. Cloud Providers are required to protect their customer data due to regulatory and customer requirements. Implementing those controls required by customers can lead towards a competitive advantage, which both providers and users of the cloud benefit from. Every company has their own practice in evaluating the security posture of a cloud provider. In each case, there are opportunities for a cloud provider to share information that will eventually reduce the scope or eliminate the requirement for an onsite review. The goal is to work with the provider to be more transparent about their security practice and develop a relationship that would allow the SaaS provider to act as an extension to the customer's security team.
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.