Book:Choosing and Implementing a Cloud-based Service for Your Laboratory

From LIMSWiki
Revision as of 20:55, 16 August 2023 by Shawndouglas (talk | contribs) (Updated for 2023)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search
Choosing and Implementing a Cloud-based Service for Your Laboratory
By Shawn E. Douglas
File:Cloud-computing-1.gif
This is a LIMSwiki book, a collection of LIMSwiki articles that can be easily saved, rendered electronically, and ordered as a printed book.

Edit this book: Book Creator · Wikitext
Select format to download:

PDF (A4) · PDF (Letter)

Order a printed copy from these publishers: PediaPress
Start ] [ FAQ ] [ Basic help ] [ Advanced help ] [ Feedback ] [ Recent Changes ]


Title: Choosing and Implementing a Cloud-based Service for Your Laboratory

Edition: Second edition

Author for citation: Shawn E. Douglas

License for content: Creative Commons Attribution-ShareAlike 4.0 International

Publication date: August 2023


This guide examines the state of cloud computing and the security mechanisms inherent to it, especially in regards to how it relates to today's laboratories. While cloud computing and cloud-based applications can enhance the activities of many types of labs, a methodical and meticulous approach to cybersecurity is required to not only get the most out of a cloud solution but also mitigate future data catastrophes. This means understanding risk management, regulatory considerations, deployment approaches, and the potential value of managed security services in the cloud. Additionally, the essential links between laboratory quality assurance, the shared responsibility model, and cybersecurity in the lab are emphasized. Of course, it's also vital to understand what to look for in cloud providers, as well as how to approach finding them. In that regard, this guide adds value by more closely examining major public/hybrid cloud and managed security service providers (Appendix 1 and 2), as well as providing example request for information (RFI) templates for both provider types (Appendix 3). While this guide can prove useful to even non-laboratory organizations looking to dip into cloud services, it focuses heavily on laboratories implementing and updating information systems in the cloud.

The second edition of this guide updates grammar and phrasing, tweaks a variety of historical statistics, tweaks information about container security, updates a few trends in hybrid and multicloud, updates information about cybersecurity insurance for cloud, updates information about the DoD JEDI project and the replacement JWCC project, and adds a subsection to Chapter 1 about edges and edge computing.

(NOTE: The PDF output of this guide fails to properly list the references. To see the original document, with references, see here.)

About this book
Introduction
1. What is cloud computing?
1.1 History and evolution
1.2 Cloud computing services and deployment models
1.3 The relationship between cloud computing and the open source paradigm
2. Standards and security in the cloud
2.1 Standards and regulations influencing cloud computing
2.2 Security in the cloud
3. Organizational cloud computing risk management
3.1 Five risk categories to consider
3.2 Risk management and cybersecurity frameworks
3.3 A brief note on cloud-inclusive cybersecurity insurance
4. Cloud computing in the laboratory
4.1 Benefits
4.2 Regulatory considerations
4.3 Deployment approaches
5. Managed security services and quality assurance
5.1 The provision of managed security services
5.2 Managed security services and the laboratory
5.3 Choosing a provider for managed security services
6. Considerations when choosing and implementing a cloud solution]]
6.1 What are the various characteristics of an average cloud provider?
6.2 What should your lab look for in a cloud provider?
6.3 What questions should you ask yourself?
6.4 What questions should be asked of a cloud provider?
7. Final thoughts and additional resources
7.1 Final thoughts
7.2 Key reading and reference material
7.3 Associations, organizations, and interest groups
7.4 Consultancy and support services
Appendix 1. Top public and hybrid/mutlicloud services
Alibaba Cloud
Amazon Web Services
Cisco Cloudcenter and UCS Director
Dell Technologies Cloud
DigitalOcean
Google Cloud
HPE GreenLake
IBM Cloud
Linode
Microsoft Azure
Oracle Cloud Infrastructure
OVHcloud
Tencent Cloud
VMware Cloud
Appendix 2. Top managed security services
Accenture Security Managed Security
AT&T Cуbеrѕесurіtу
Atos Managed Security Services
BT Cyber Security Platform
Cisco Active Threat Analytics
Cyderes Managed Services
Foresite Managed Cybersecurity
IBM Managed Security Services
NTT Managed Security Services
Orange Cyberdefense
Secureworks Managed Security Services
Trustwave Managed Security Services
Verizon Managed Security Services
Wipro Managed Security Services
Appendix 3. RFI questions for cloud providers and MSSPs
RFI questions for cloud providers
RFI questions for MSSPs