Is compliance preventing you from moving to the cloud?

ITKE

1067670 pts.

Tags:

Cloud compliance

Cloud Computing

Cloud Security

Compliance Assessment

IT Compliance

PCI DSS

Are compliance concerns (such as PCI DSS) or more general data security concerns preventing you from moving data to the cloud? What would be required for you to reconsider your position?

Asked: February 2, 2010 5:32 PM Last updated: October 19, 2010 12:50 AM

Answer Wiki

Last updated: January 29, 2013 4:57 PM GMT

Kevin Beaver25,760 pts.
History
Contributors
- Ordered by most recent
- Kevin Beaver25,760 pts.

Thanks. We'll let you know when a new response is added.

I do think this is something that’s holding people back.

I’m a proponent of cloud services – have a lot of clients in that space. I’m just concerned because I see so many people blindly trusting cloud service providers. They say “Is your system secure?” The answer is “Yes!”, of course, and then nothing else is done. No validation, no follow-up testing, nothing but blindly trusting contracts, SSAE 16 reports, and people’s word.

This is not a good way of doing business.

If you and your business are going to be held accountable for the regulations, how can you possibly say you’re “compliant” when your cloud service providers don’t even fully understand how they’re systems and applications are vulnerable?

Trust but verify; here are some cloud security and compliance resources for further reading that may be helpful.

Discuss This Question: 1 Reply

Shilpa Venkateshwaran Oct 19, 2010 0:50 AM GMT

Yes it does when we sell content. Its what we are in...and we cant have someone else develop or even take the knowledge from us.

2,500 pointsBadges:

report