Cloud Security — Technology Wiki

Overview

Direct Answer

Cloud security encompasses the protective measures, architectural patterns, and compliance frameworks designed to safeguard data, applications, and infrastructure operating within cloud environments. It addresses threats specific to distributed, multi-tenant cloud architectures where security responsibility is shared between cloud providers and customer organisations.

How It Works

Security operates across multiple layers: identity and access management controls authenticate users and enforce least-privilege permissions; encryption protects data in transit and at rest using cryptographic protocols; network segmentation isolates workloads; and continuous monitoring detects anomalous behaviour through logs and telemetry. Providers manage infrastructure-level security whilst organisations configure application-level policies, creating a shared responsibility model.

Why It Matters

Organisations migrating to cloud platforms face exposure to data breaches, unauthorised access, and compliance violations that can result in regulatory penalties and reputational damage. Effective cloud security reduces operational risk, enables regulatory compliance (GDPR, HIPAA, ISO 27001), and protects sensitive customer and intellectual property data whilst maintaining business continuity.

Common Applications

Financial institutions secure payment processing and customer records in cloud environments; healthcare organisations protect patient data across cloud-hosted electronic health records; enterprises implement identity governance for remote workforce access; and software-as-a-service providers implement tenant isolation and encryption to protect user data.

Key Considerations

The shared responsibility model requires organisations to understand which security layers the provider manages and which remain their obligation. Over-reliance on provider defaults often leaves gaps; practical implementation demands continuous validation, regular security assessments, and incident response planning aligned to cloud architectures.

Related in Strategy & Economics

Multi-Cloud

A strategy using services from multiple cloud providers to avoid vendor lock-in and optimise capabilities.

Hybrid Cloud

An IT architecture combining on-premises infrastructure with public and private cloud services.

Identity and Access Management

A framework for managing digital identities and controlling user access to resources and systems.

Single Sign-On

An authentication scheme allowing users to log in once and gain access to multiple related systems.

OAuth

An open standard for token-based authentication and authorisation on the internet.

Cloud Database

A database service built, deployed, and accessed through a cloud platform, offering scalability and managed operations.

Reserved Instance

A cloud pricing model where users commit to a specific resource configuration for a term in exchange for discounted rates.

Cloud Governance

The policies, procedures, and tools for managing cloud resource usage, security, compliance, and costs.

Multi-Tenancy

A software architecture where a single instance serves multiple customers, with each tenant's data isolated and invisible to others.

Cloud Bursting

A configuration where an application runs in a private cloud and bursts into a public cloud when demand spikes.

Cloud-Native Database

A database designed from the ground up to operate in cloud environments with automatic scaling and high availability.

Serverless Database

A database service that automatically provisions, scales, and manages infrastructure on demand without manual server management.

More in Cloud Computing

Hypervisor

Infrastructure

Software that creates and manages virtual machines, allowing multiple operating systems to share a single hardware host.

Sovereign Cloud

Strategy & Economics

Cloud infrastructure operated within national boundaries under local jurisdiction, ensuring data sovereignty, regulatory compliance, and protection from foreign government access.

Software as a Service

Service Models

Cloud computing model that delivers software applications over the internet on a subscription basis.

Platform as a Service

Service Models

Cloud computing model that provides a platform for developers to build, deploy, and manage applications without managing infrastructure.

Service Mesh

Architecture Patterns

An infrastructure layer handling service-to-service communication in microservices, managing traffic, security, and observability.

Load Balancer

Infrastructure

A device or software that distributes network traffic across multiple servers to ensure no single server is overwhelmed.

Serverless Computing

Service Models

A cloud execution model where the provider dynamically allocates resources, charging only for actual compute time used.

FinOps

Strategy & Economics

A cultural practice combining technology, finance, and business to manage cloud costs through data-driven decision making.