As enterprises around the world adopt cloud computing strategies, personally identifiable information, health records, credit card numbers and other regulated data increasingly pass through the control of a wide range of service providers.  Organizations adopting cloud-based services must take time to understand the compliance ramifications of cloud computing decisions and move forward in a manner that maintains compliance with applicable regulations.  Compliance doesn’t necessarily need to slow down cloud adoption, but it should remain a high priority in a cloud-enabled IT environment.

Security and compliance professionals should understand the shared responsibility model that underlies cloud computing, data locality issues, the impact of cloud services on security operations and the assessment and compliance practices that must accompany cloud migrations.

Read the full story: Compliance in the Cloud

Published October 29, 2015 in Information Security Magazine