RSS Alerts

Roger Halbheer

Job title:
Chief security advisor, Microsoft

Areas of expertise:
Policy, architecture, law enforcement, cybersecurity, processes

Biography:
Roger Halbheer joined Microsoft as Chief Security Advisor of Microsoft Switzerland in 2001 and was promoted to the role of Chief Security Advisor for Microsoft Europe, the Middle East and Africa (EMEA) in February 2007. Roger leads a team of national Chief Security Advisors across EMEA who work with organizations in the commercial and public sectors - including national governments, law enforcement and intelligence agencies - on information technology issues and strategies. He is a trusted advisor to C-level executives, governments and law enforcement agencies and has established relationships with security communities and government agencies across the region. Roger is a regular speaker at industry events and has worked with national and international print and broadcast media both to represent Microsoft and to provide expert comment on broader security issues. A Swiss national, Roger holds a Master of Computer Science degree from the Federal Institute of Technology in Zurich and is a Certified Information System Security Professional (CISSP). Before joining Microsoft, he was responsible for e-Business Risk Management at PricewaterhouseCoopers in Switzerland. He lives in Zurich and is married with two sons.

Tag Cloud

Malware Cybercrime Compromised Sites Web Security security Compliance Rogue AV Business Value

Bloggers

Blog

Hey, You, Get Off of My Cloud

I recently had different discussions with different customers and we were looking into the key questions to ask, when you plan to move to the cloud (yes, I am working on a corresponding blog post). I was then asked whether we have an answer to these questions – well no. For sure not for all of them and I stated that I am not only sure whether we know all the questions yet…

I then stumbled across the following article Hey, You, Get Off of My Cloud: Exploring Information Leakage in Third-Party Compute Clouds. A very interesting approach to attack a virtual machine in the cloud if you use Infrastructure as a Service – they used Amazon EC2 as an example.

This definitely introduces new ways of attacking an infrastructure – and therefore new questions and risk. So, make sure you have the proper risk management processes in place

Roger

Posted 27/09/2009 by Roger Halbheer

Tagged under: Cloud Computing

Comment on this blog

You must be registered and logged in to leave a comment about this blog.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water