Press Release

Ann McDonough
+1-781-444 0404

Cloud Standards Customer Council Publishes Cloud Customer Architecture for Securing Workloads on Cloud Services Whitepaper

Register for April 19 Webinar to Hear from the Authors


Needham, MA - April 13, 2017 — The Cloud Standards Customer Council™ (CSCC™) has published a new whitepaper, Cloud Customer Architecture for Securing Workloads on Cloud Services, that outlines security services and corresponding best practices for deploying a comprehensive cloud security architecture. The aim of this new guide is to provide a practical reference to help IT architects and IT security professionals architect, install, and operate the information security components of solutions built using cloud services. It is available for download at

Many cloud services are now available, covering infrastructure, platform and application capabilities. Building business solutions using cloud services requires a clear understanding of the available security services, components and options—allied to a clear architecture— which addresses the complete lifecycle of cloud solutions covering development, deployment and operations.

The following security components are covered in detail:

  • Identity and Access Management
  • Infrastructure Security
  • Application Security
  • Data Security
  • Secure DevOps
  • Security Monitoring and Vulnerability
  • Security Governance, Risk and Compliance

This paper is intended as an in-depth extension of the high level advice offered in the CSCC’s other papers: Security for Cloud Computing: Ten Steps to Ensure Success V2.0 and Cloud Security Standards: What to Expect & What to Negotiate V2.0.

The CSCC will host a complimentary webinar on Wednesday, April 19 from 2:00pm – 3:00pm ET to introduce the paper. Additional information and a link to register are available at

About the Cloud Standards Customer Council
The Cloud Standards Customer Council™ (CSCC™) is an end-user advocacy group dedicated to accelerating the cloud’s successful adoption and drilling down into the standards, security and interoperability issues surrounding the transition to the cloud. The CSCC is chartered to work with standards development organizations (SDOs), open source communities, and end user organizations to publish vendor-neutral guides on important cloud computing topics. The guides are distributed to industry members to highlight customer requirements, influence standards development, and advance the adoption of cloud computing. The CSCC is managed by the Object Management Group® (OMG®), an international, open membership, not-for-profit technology standards consortium. For more information, visit

Note to editors: For a listing of all OMG trademarks, visit All other trademarks are the property of their respective owners.