Emerging Cloud Security Threats

Troy Elsen, Director of Cloud Infrastructure Operations
October 28, 2019

Weak Identity and Access Management Controls

  • Identity and access management (IAM) controls are about securely managing the user account life cycle across one or many organizations. Least access principles should always be followed.
  • Administrative controls such as policies and procedures surrounding authentication and authorization should be in place to ensure industry best practice is followed.
  • Technical controls such as a third-party application that allows for centralized management and integrates with company user directories.  

Cloud provider's role in security

  • As more and more companies take their business to the cloud, there is often a blurred line regarding security roles and responsibilities.
  • Companies and cloud providers must ensure all layers of the company solution are identified and protected by one or both parties. These areas of responsibilities should be addressed during the contractual phase of the service agreement.  

IoT Security

  • The Internet of Things (IoT) continues to grow with technology. Things such as baby monitors, coffee makers, security systems and even cars are now connected to the internet.
  • Reviewing basic security requirements such as default account settings and password reset, encryption, web interface security can help prevent malicious activity.

Account Hijacking

  • Businesses will continue to increase public web transactions and increase the risk of compromise.
  • Cloud applications should have strong authentication methods and use multi-factor authentication whenever possible. Sensitive data should be encrypted in-transit and at-rest. Context-based access controls such as time of day or source location can also be used to improve account security.
Share this post
Troy Elsen, Director of Cloud Infrastructure Operations
October 28, 2019

More Blogs

Add Validation on Change Status with Automation Scripts

Add Validation on Change Status with Automation Scripts

This blog explores using automation scripts in Maximo to enforce business logic, particularly for validating field requirements upon status changes. It contrasts simpler methods, like Application Designer and data restrictions, highlighting automation scripts' ability to handle complex logic and provide clear, custom error messages. The blog covers practical examples, including required fields for asset status changes and mandatory specifications for operating assets, showcasing how automation scripts improve data integrity and user guidance in Maximo.
Read post
Celebrating Loyalty: A Heartfelt Thank You to Our Long-Time Customers

Celebrating Loyalty: A Heartfelt Thank You to Our Long-Time Customers

Projetech celebrates its loyal customers in a heartfelt blog, emphasizing the invaluable role they play in the company's journey. Recognizing that customer loyalty is a cornerstone of success, the blog reflects on the mutual trust and commitment that has grown over the years. It highlights the significant contribution of long-term customers, not just as patrons, but as key partners in growth, shaping the company’s services through their continuous support and feedback.
Read post
The Power of Enterprise Asset Management: Revolutionizing Airport Operations

The Power of Enterprise Asset Management: Revolutionizing Airport Operations

Our blog delves into how Enterprise Asset Management (EAM) systems revolutionize airport operations. EAM facilitates efficient asset tracking, predictive maintenance, and lifecycle management, crucial for smooth airport functionality. It ensures regulatory compliance, optimizes resource usage, and integrates with other systems. EAM not only enhances operational safety and cost-effectiveness but also significantly improves the passenger experience. This makes EAM systems indispensable in modern airport management for ensuring seamless and safe travel experiences.
Read post

Become a part of our thriving community with over 4,000 Maximo users.

MORE offers users a platform to discover valuable resources and engage in insightful discussions surrounding the intricacies of Maximo software. Connect with peers and experts to explore the depths of possibilities and enhance your expertise.