Yes. That is the tag line used for the AWS Summit in Auckland a few days back. Look at the world at the moment, the traditional data centres are too hard to manage and build, and the jobs that amount to having managing a service using the traditional approach is deemed complex. Amazon AWS, however have used their excellent infrastructure as a business model. Why not sell our data centre infrastructure to companies with a lower cost and maintenance. Great idea, and great frontier ahead. So yes, i am praising the giants; wheres the catch however?
There are a few concerns however in terms of controls and how the separation is in terms of managing the security and privacy of users. Amazon is great, but when it comes to infrastructure security we still need to emphasise the need of implementing security controls. The separation of responsibility is clearly defined by Amazon; which clearly states, that the physical infrastructure and policies that govern infrastructure security is managed by them. This probably does not fulfil some criterions needed by certain security standards. Users must be really aware about this lines of responsibilities and security.
If you intend to support AWS, by all means, its awesome; but please do run testing and make sure you are secure from your end of things. Physical security is just one aspect and that Amazon can manage, but the security in terms of PII( Personal Identifiable Information) and management of infrastructure is still your responsibility. Do not dream of going to Amazon AWS if you have had a breach of data and you realise that you did not patch your system or implement secured coding.
1. Have an audit once in six months.
2. Do not put PII on the cloud; it is always good to have your PII data locally placed. The closest amazon POP is in Sydney/Melbourne. This is the global Infra for AWS : http://aws.amazon.com/about-aws/global-infrastructure/
3. Implement security controls always; it is your infrastructure, it is your responsibility to keep it secure.
4. Keep it simple
5. Always be up to date with what AWS has to offer; through their blog. It is amazing the updates they do.
6. Finally, love the cloud. It is a revolution and you can’t run from it. However like everything else; keep it safe and secured.