Security Considerations for the Cloud

Written by Carol Woodbury

Monday, 23 April 2012 00:00

Support MC Press - Visit Our Sponsors

Forums Sponsor

POPULAR FORUMS

Unable to create java virtual machine on V7R1 (734 views)

RUNRMTCMD to Windows Server 2008 R2 (585 views)

Fixed header table plugins (560 views)

AIRLIB Objects Work on V7R1? (532 views)

CL to monitor job queue and release jobs (463 views)

PDF Colors and Fonts - Do these changes apply only to Paragraphs? (446 views)

Password-Protect PDF in the IFS (342 views)

CL to monitor job queue and release jobs (331 views)

Print Bar Graph from RPG (216 views)

35 free gem-quality diamonds (209 views)

Forums

Search Sponsor

Search

Cloud hosting may be more cost-effective and efficient than non-cloud alternatives, but IT managers must evaluate whether it makes real business sense and ensure that it doesn't violate corporate security policies.

Editor's Note: This article is an introduction to the white paper "Security Considerations for the Cloud" available free to download from the MC White Paper Center.

Security concerns abound when it comes to cloud computing. If you do any research on the concerns associated with doing business in the cloud, a top concern—if not the top concern—is always data security and privacy. Are these concerns justified, or is it simply the fear of the unknown? Let's take a look.

Considerations

Just as you do when you take advantage of any new technology, you have to decide whether the new technology is just "cool" or it actually meets your business needs. When it comes to cloud computing, it has the potential to save significant money over hosting your own computing resources—in terms of hardware, support of that hardware, and software licenses. But just because it saves money does not necessarily mean that it will meet your business requirements. Specifically, you must examine both the technology and the technology provider to ensure they can meet your organization's security policy requirements, legal requirements for issues such as discovery of information when in a lawsuit, and compliance requirements for all of the laws and regulations with which your organization must comply.

Much of whether cloud computing meets your business requirements depends on the type of data being stored, manipulated, or shared in the cloud. If you're thinking of using the cloud to manage Personally Identifiable Information (PII), healthcare information, or Payment Card Industry (PCI) data, you'll want to look at the requirements your organization's security policy places on this type of data.

To learn more, download the white paper "Security Considerations for the Cloud" available free from the MC White Paper Center.

Carol Woodbury
		About the Author:
		Carol Woodbury is co-founder of SkyView Partners, Inc., a firm specializing in security compliance and assessment software, services, and solutions, as well as security services. Carol has specialized in security architecture, design, and consulting since 1990. Carol speaks around the world on a variety of security topics and just released her latest book, IBM i Security Administration and Compliance.
	Read More >>

Articles by this Author:

View all articles by this author

< Prev		Next >

Last Updated on Monday, 23 April 2012 00:00

Please login to make comments.

04/15/2013 - Technology Focus: In the Realm of Auditing and Compliance, the Song Remains the Same
03/25/2013 - Managing Privileged Users on IBM i
02/25/2013 - The 12 Sections of PCI DSS and How Each Relates to the IBM i Community
09/10/2012 - PCI DSS Compliance with Managed File Transfer
07/23/2012 - DMZ Gateways: Secret Weapons for Data Security