1 00:00:00,000 --> 00:00:02,005 - [Instructor] Some industries have specific needs 2 00:00:02,005 --> 00:00:04,009 or legal requirements when it comes to security. 3 00:00:04,009 --> 00:00:08,001 Let's take a look at secure cloud-based systems 4 00:00:08,001 --> 00:00:10,002 in the finance vertical. 5 00:00:10,002 --> 00:00:11,009 Most of the cloud security deployments 6 00:00:11,009 --> 00:00:14,006 focused on finance are in the banking industry. 7 00:00:14,006 --> 00:00:16,004 So let's focus there. 8 00:00:16,004 --> 00:00:17,009 You'll find that while there were 9 00:00:17,009 --> 00:00:20,000 many regulations to follow 10 00:00:20,000 --> 00:00:22,004 in most types of financial businesses, 11 00:00:22,004 --> 00:00:24,000 banking regulations are typically 12 00:00:24,000 --> 00:00:25,004 the most strict. 13 00:00:25,004 --> 00:00:28,005 Also, the regulations differ 14 00:00:28,005 --> 00:00:31,000 a great deal from country-to-country. 15 00:00:31,000 --> 00:00:33,004 Thus, while you'll have one set of regulations 16 00:00:33,004 --> 00:00:35,001 to follow in the US, 17 00:00:35,001 --> 00:00:38,001 there is yet another to follow in Europe. 18 00:00:38,001 --> 00:00:39,003 There are three main concepts 19 00:00:39,003 --> 00:00:41,002 to pay attention to, privacy 20 00:00:41,002 --> 00:00:43,006 or the ability to keep personal data protected. 21 00:00:43,006 --> 00:00:46,000 This includes customer names, addresses, 22 00:00:46,000 --> 00:00:48,000 and banking transactions. 23 00:00:48,000 --> 00:00:49,007 Disclosure are the ability 24 00:00:49,007 --> 00:00:51,003 to provide the information needed 25 00:00:51,003 --> 00:00:52,005 for audits quickly. 26 00:00:52,005 --> 00:00:54,007 Sometimes these are internal audits 27 00:00:54,007 --> 00:00:56,008 or audits given by regulators. 28 00:00:56,008 --> 00:00:58,006 Finally, fraud prevention. 29 00:00:58,006 --> 00:00:59,008 Or the ability to ensure 30 00:00:59,008 --> 00:01:00,009 that bank customers, 31 00:01:00,009 --> 00:01:03,001 and banks are protected from fraud. 32 00:01:03,001 --> 00:01:03,009 For example, 33 00:01:03,009 --> 00:01:06,006 a phishing email that leads to customers 34 00:01:06,006 --> 00:01:08,001 giving away user IDs, 35 00:01:08,001 --> 00:01:11,000 and password information to attackers. 36 00:01:11,000 --> 00:01:12,000 The core message here 37 00:01:12,000 --> 00:01:13,007 is that financial regulations 38 00:01:13,007 --> 00:01:15,007 is related to cloud security requires 39 00:01:15,007 --> 00:01:17,006 that there be a business aspect 40 00:01:17,006 --> 00:01:20,006 of understanding what the regulations are, 41 00:01:20,006 --> 00:01:22,000 how they are enforced, 42 00:01:22,000 --> 00:01:23,006 and what's the technology needed 43 00:01:23,006 --> 00:01:25,000 to enforce them. 44 00:01:25,000 --> 00:01:26,006 Again, public cloud providers 45 00:01:26,006 --> 00:01:28,009 support most regulations as related 46 00:01:28,009 --> 00:01:30,004 to the financial industry. 47 00:01:30,004 --> 00:01:32,005 It's a matter of understanding the regulations 48 00:01:32,005 --> 00:01:33,008 you need to follow. 49 00:01:33,008 --> 00:01:35,001 And then the cloud solutions 50 00:01:35,001 --> 00:01:36,007 that provide the best solutions 51 00:01:36,007 --> 00:01:41,000 for security and compliance.