The Cloud Security Mindset

imageThe Cloud Security Mindset white paper discusses how  Microsoft IT has safely and securely moved much of its IT infrastructure to Microsoft Azure, while supporting rapid innovation within the enterprise. Applications and services that have moved support line of business activities across the enterprise landscape. Examples include source code management, Finance, Corporate, External, and Legal Affairs, Human Resources, and information security processes.

During the migration process, Microsoft IT discovered that a pure “lift and shift” approach to security architecture wasn’t enabling it to get the most out of their cloud transition. Some traditional approaches needed to be altered, and new or increased focus needed to be placed on responding to threats as opposed to preventing them. In this paper they discuss many security lessons learned during their migration – and now you can benefit from them and use them as you continue your secure journey into the Microsoft Azure cloud.

The following areas are discussed:

  • Cloud computing as a partnership
  • Protect, detect and respond
  • DevOps teams control applications
  • Providing guardrails, not gates
  • Sanctioning shadow IT
  • Getting security fundamentals right

We hope you find the Cloud Security Mindset white paper helpful and please ask any questions or add comments in the Comments section below.



Tom Shinder
Program Manager, Azure Security
@tshinder | Facebook | LinkedIn | Email | Web | Bing me! | GOOG me!