Information Security Forum Delivers Tips For Reducing Security Risk In The Cloud At (ISC)2

15 July 2010: At this month’s SecureAsia@Singapore Conference & Exhibition, Asia-Pacific’s leading event for information security professionals organized by (ISC)2, the Information Security Forum (ISF) will present high-level tips for increasing confidence and reducing the risks in cloud computing. The event will be held at Suntec Singapore from 26-27 July, 2010.

Drawing on ISF research – which includes the knowledge and experience of ISF members as well as over 300 of the world’s leading companies and public sector organizations – Adrian Davis, a senior research consultant for the ISF, will examine the relationship between cloud provision and outsourcing, along with key technologies such as virtualisation.

The rapid adoption of cloud computing has been identified as one of the top information security challenges in the ISF’s latest Threat Horizon Report. This will be the focus of an ISF workshop on 29 July, following the SecureAsia@Singapore Conference. Other key threats highlighted include the increasing use of powerful mobile devices, the growth in cybercrime and online espionage, and the merging of home and work computing. To find out more about the workshop, contact Steve Durbin, the ISF’s vice president for worldwide sales and marketing at: [email protected].

“Our research found that while over 90% of ISF members surveyed believe that cloud computing changes their information security risk landscape, they are well placed to address these security issues,” said Adrian Davis. “The main areas of concern are focused on managing user identities and credentials, third-party service providers, emerging cloud technologies, protecting against new forms of malware and legal and regulatory issues.”

“By working closely with our members, who have successfully implemented cloud computing, we are able to harness their knowledge and experience to create advice and guidance for best practices,” adds Davis. “In our latest report on Cloud Computing, we advise members to address five tasks: prepare a strategy; identify the impact on business operations; assess risks to data; ensure information security is part of the decision making process; and work under the assumption that cloud computing is already being used within the organization.”

About the ISF

The ISF is the leading independent, not-for-profit authority on information security, dedicated to reducing risk and resolving information security challenges. By harnessing its world-renowned expertise and the collective knowledge of its members, the ISF delivers practical solutions including access to over 400 authoritative research reports along with risk methodologies and benchmarking tools, to overcome wide-ranging security challenges impacting business information today. If you would like to find out more about the ISF, please visit: www.securityforum.org or contact [email protected]

For press information of if you would like to organise a briefing with Adrian Davis, please contact: Allie Andrews or Peter Rennison, PRPR, Tel: + 44 1442 245030, email: [email protected] / [email protected]