My Talk at Google

Re : auditing cloud providers &#x2F; higher security or assurance infrastructure.<p>1) If you bring enough money to the table, you can get them to let you in the doors and look at whatever you might want.<p>2) Rackspace ( <a href="http://www.rackspace.com/blog/compliance-standards-and-regulations-that-keep-the-cloud-secure/" rel="nofollow">http:&#x2F;&#x2F;www.rackspace.com&#x2F;blog&#x2F;compliance-standards-and-regul...</a> ) (and others) currently hold audit certifications and will sometimes show the certification reports. Some things to look for: SSAE16 SOC 1,2,3 (type 1 and 2) , PCI&#x2F;DSS , ISO 27001, etc.<p>3) AWS is setting up a .gov region. I&#x27;m guessing that this will have a higher security bar than the rest of the regions.<p>4) google is rumored to have a Fort Meade presence, I would guess that the average googler wouldn&#x27;t be allowed to use that infrastructure.<p>5) Rather than renting from a single cloud, for higher security installations someone like Booze Allen Hamilton would help you build out and run a more custom solution rather than take a share of a pooled resource.

I know the content of the video itself is very interesting, but I have to make this tangential comment:<p>Is it me or do people who were born in Brooklyn in the 50s and 60s have cool accents? Richard Stallman for example has a very similar accent.

All Watched Over by Machines of Loving Grace<p><a href="http://www.bbc.co.uk/programmes/b011k45f" rel="nofollow">http:&#x2F;&#x2F;www.bbc.co.uk&#x2F;programmes&#x2F;b011k45f</a>

Great talk. Loved it. Bruce is an insightful, engaging speaker. I come to like him even more :)