It is essential that any challenges or areas that are unclear should be raised and clarified prior to engagement and signing of any contracts between the customer and provider. Why is this important? For three distinct reasons: Understanding the contractual requirements will form the organization’s baseline and checklist for the right to audit Understanding the gaps will allow the … [Read more...] about Cloud Service Providers Risk Management: Importance of Identifying Challenges Early

What risk does this present to you or the organization? How can you address these risks with the view to understanding the risk posture? The following should form the basis in understanding the exposure (prior to any services engagement): Is the provider an established technology provider? Is this cloud service a core business of the provider? Where is the provider located? Is the … [Read more...] about Cloud Service Providers Risk Management: Understanding Your Risk Exposure

Similar to a contract signed between a customer and cloud provider, the SLA forms possibly the most crucial and fundamental component of how security and operations will be undertaken. The SLA should also capture requirements related to compliance, best practice, and general operational activities to satisfy each of these. Within an SLA, the following contents and topics should be covered as a … [Read more...] about Cloud Service Providers Risk Management: Service Level Agreement (SLA)

October is national “Cyber Security Awareness Month.” The theme is “Cyber Security is our Shared Responsibility” and that message has never been more appropriate. While there are many steps that people can take to be safe online, the following is a list of ten things you can do to secure your information. 1) Passwords: Use strong passwords to secure your information. Passwords should have at … [Read more...] about Cyber Security Top Ten Tips