CLoud Security
Choose one of the following options for this assignment:
Option A: Select a real-world organization upon which to focus. This organization needs to be mid-size or larger and may be one of your former employers, your current employer, or any other organization where you have a direct contact with information technology personnel. If you select an organization other than your current employer, keep in mind that you want to select an organization that gives you enough access so that you can gather the information needed to complete this project. You will need to provide a description of the company that is sufficient to provide a context for understanding the regulatory constraints of its industry.
Research
Identify and research a specific information security-related regulatory requirement whose compliance is dictated by one of the following regulatory rules:
Health Insurance Portability and Accountability Act (HIPAA).
DIRECTIONS
Assume the organization you chose (see the Preparation section in this assignment) is planning to move a significant IT function, such as data storage or office productivity applications, to a public cloud computing service provider.
Identify a security control that you would recommend for achieving compliance with your chosen regulatory rule.
Make sure to do the following:
Explain how your security control protects your cloud data.
Create a logical network diagram that indicates the appropriate placement of your security control.
Explain how your security control enables regulatory compliance.
Solution Preview
Introduction
The security of information is considered an issue that only the tech savvy IT department can handle. The data needs to be electrically stored to comply with the laws in place on storage of patient information. The installation of a software that could help safeguard the information got sourced and installed. The data gets stored in a cloud, and only the authorized personnel have access to it.
(897 words)