July 30, 2010
The Cloud Security Alliance has announced a new cloud security certification here.
No attempted wit, humour nor sarcasm could do this justice so I will sign off now.
———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.
Jeez this is one of the funniest infosec things I’ve read in ages. Thx DD!
Loved this bit -(Jerry Archer, CSO for Sallie Mae);
“The CSA, in providing a set of goals through the CCSK, is challenging security practitioners to become the cloud thought-leaders we need today and tomorrow to ensure safe and secure cloud environments. In developing the CCSK, CSA is “setting the bar” for security professionals and providing business executives a means to gauge the opinions and rhetoric associated with security in the cloud.”
“Rhetoric”?? “Cloud thought-leaders”?? F- me gently, do you reckon Jerry Archer sees the irony in his own spin?
[...] This post was mentioned on Twitter by Win Security, Roer.com – the Blog!, Roer.com – the Blog!, Avnet SolutionsPath™, Anupam Kakroo and others. Anupam Kakroo said: Cloud Security Certification http://bit.ly/9vC0yQ #Security [...]
Great post. Made me go back and read the whole thing. It gets sadder and dumber as it goes along. An extraordinary weird thing.
http://www.zdnet.com.au/clouds-gather-over-sydney-339305032.htm
Scary.
http://www.securecomputing.net.au/News/223980,cloudcamp-five-key-concerns-raised-about-cloud-computing.aspx
I just wonder how we get into positions where some questions like these have to be asked. The first 4 are really sad if you need to be asking them. Worse still, why TF are some organisations doing this at all?
BTW, The old AS/NZS Guide for Managing Risk in Outsourcing was not a bad document. (I think it was a 4360 addition).
DD