Reviewing the shared responsibility model for cloud security
When it comes to migrating to the cloud, some of our responsibilities transfer to the cloud provider, such as the responsibility to purchase and maintain hardware. This concept is vital for understanding who is responsible for what when it comes to securing data, applications, and infrastructure in the cloud. The exact division of responsibilities can vary depending on the type of cloud service model being used, including infrastructure as a service (IaaS), platform as a service (PaaS), software as a service (SaaS), and the specific cloud service provider.
The responsibility model according to Microsoft is as follows for each category of services:
Table 10.1 – Shared responsibility model
The same division of responsibilities applies to security. It’s essential to clearly understand the shared responsibility model with Azure and take the necessary steps to fulfill our part of...