Access "Understanding cloud compliance issues"
This article is part of the null issue of null
In this tip, the eighth in our series of technical tips on cloud security, we discuss cloud compliance. Cloud compliance concerns are one of the major reasons that companies are holding back from using cloud services. The promise of inexpensive, flexible computing that can be created, dismantled, reconfigured, grown and shrunk on demand is very appealing, but can it incorporate necessary regulatory requirements? Standards and regulations, such as the Massachusetts Privacy Law (201 CMR 17), PCI-DSS, SOX, Nevada SB-227 and HIPAA, are requiring many organizations to evaluate their data protection measures. Moving to the cloud can impact an organization's ability to comply with these regulations and standards. In this tip, we'll explore two of the more problematic characteristics of cloud computing that adversely affect an enterprise's ability to maintain compliance. The main questions in regards to compliance Virtually every regulation requires organizations to adequately protect their physical and informational assets. To do this, there is an implied or ... Access >>>