Presentation is loading. Please wait.

Presentation is loading. Please wait.

Oyinkan Adedun Adeleye Caitlyn Carney Tyler Nguyen.

Published byMarlene Morris Modified over 9 years ago

Similar presentations

Presentation on theme: "Oyinkan Adedun Adeleye Caitlyn Carney Tyler Nguyen."— Presentation transcript:

1 Oyinkan Adedun Adeleye Caitlyn Carney Tyler Nguyen

2  What is the Cloud?  On-demand service model for IT provision, often based on virtualization and distributed computing technologies.  Applications and data stored and maintained on shared machines in a web-based environment  Can include web-based applications, web-hosted services, centralized data centers and server farms, and platforms for running and developing applications.  Key Terms:  Cloud Service Provider (CSP)  Multi-tenancy

3  Cloud Deployment Models:  Private  Community  Public  Hybrid  Cloud Service Delivery Models:  Software as a service (SaaS)  Platform as a service (PaaS)  Infrastructure as service (IaaS)

4  Decreased capital costs  Decreased IT operating costs  No hardware or software installation or maintenance  Scalability & Flexibility  Speed of Deployment  Specialized/Highly abstracted resources  Environmental Considerations

5

6  Lack of Total Control  Reliability/System availability  Netflix experienced a total outage for two days  Christmas eve and Christmas Day  Cloud Provide, Amazon had a service outage  Lack of Transparency

7  Non-Compliance (Regulatory, Disclosure)  Getting stuck with a provider;  Proprietary code  Data Security  Cloud service provider viability  Most providers are young companies  Longevity and profitability is questionable

8 RiskControls Loss of IT Governance Lack of Transparency Management oversight and operations monitoring controls Assessments of CSP control environment: Control related inquiries in RFP Right to audit clause in SLA Interviews with CSP to determine how certain risk events would be addressed Require internal audit evaluation or independent audit reports (i.e. SOC 2) Unauthorized Cloud Activity Cloud Policies & Controls: Cloud usage policy List of approved cloud vendors CSP relationship management

9 RiskControls Security, Non- compliance, Data Leakage Data Classification Policies: Defining purpose and ownership of different types of organizational data Mapping legal, regulatory, IP, and security requirements to various types of data Determining sensitivity (public, restricted, highly sensitive) Determining requirements for data transmission (i.e encryption methods) Non compliance with regulations: Monitoring of external environment Non compliance with disclosure requirements: New disclosures in financial reporting

10 RiskControls Reliability & Performance, System Availability Incident management controls Disaster Recovery/BCP controls Processes to monitor system availability Automated tools to provide resources on demand for cloud solution from another service provider Review SLAs to ensure CSP will provide adequate response in event of system failure High Value Cyber- Attack Target Incident management controls Host only nonessential and non-sensitive data on third party CSP solutions Deploy encryption over data hosted on cloud solutions Have a defined fail-over strategy Vendor lock-in and lack of application portability or inoperability Prepare an exit strategy/contingency plan for overall cloud strategy

11  Cloud computing is a widely used and growing technology. Gartner predicts it will be a $140 billion industry by 2014.  Many cloud-based solutions are available in today’s market, each with unique risks.  It is essential that organizations effectively manage the key risks associated with their specific cloud infrastructure in order to fully take advantage of opportunities presented by the cloud.

12

13  http://www.coso.org/documents/Cloud%20Computing%20Thoug ht%20Paper.pdf http://www.coso.org/documents/Cloud%20Computing%20Thoug ht%20Paper.pdf  https://resilience.enisa.europa.eu/cloud-security-and- resilience/publications/cloud-computing-benefits-risks-and- recommendations-for-information-security https://resilience.enisa.europa.eu/cloud-security-and- resilience/publications/cloud-computing-benefits-risks-and- recommendations-for-information-security  https://www.f5.com/pdf/white-papers/controlling-the-cloud- wp.pdf https://www.f5.com/pdf/white-papers/controlling-the-cloud- wp.pdf  http://www.cliftonlarsonallen.com/Risk-Management/The- Benefits-and-Risks-of-Cloud-Computing.aspx http://www.cliftonlarsonallen.com/Risk-Management/The- Benefits-and-Risks-of-Cloud-Computing.aspx  http://aimdegree.com/research/ebriefings/eb-betcher.php http://aimdegree.com/research/ebriefings/eb-betcher.php  http://www.forbes.com/sites/louiscolumbus/2013/02/19/gart ner-predicts-infrastructure-services-will-accelerate-cloud- computing-growth/ http://www.forbes.com/sites/louiscolumbus/2013/02/19/gart ner-predicts-infrastructure-services-will-accelerate-cloud- computing-growth/

Download ppt "Oyinkan Adedun Adeleye Caitlyn Carney Tyler Nguyen."

Similar presentations

Pros and Cons of Cloud Computing Professor Kam-Fai Wong Faculty of Engineering The Chinese University of Hong Kong.

Pros and Cons of Cloud Computing Professor Kam-Fai Wong Faculty of Engineering The Chinese University of Hong Kong.
IT Industry & Cloud Computing. Trends ‘2011- The year of high salaries and immense job opportunities for IT job seekers’ (Source – Blog.Timesjobs.com)

IT Industry & Cloud Computing. Trends ‘2011- The year of high salaries and immense job opportunities for IT job seekers’ (Source – Blog.Timesjobs.com)
1 Miami-Dade County Public Schools. 2 From the Data Center to the Cloud: Manny Castañeda Miami-Dade County Public Schools.

1 Miami-Dade County Public Schools. 2 From the Data Center to the Cloud: Manny Castañeda Miami-Dade County Public Schools.
Chapter 22: Cloud Computing and Related Security Issues Guide to Computer Network Security.

Chapter 22: Cloud Computing and Related Security Issues Guide to Computer Network Security.
Cloud Computing Brandon Hixon Jonathan Moore. Cloud Computing Brandon Hixon What is Cloud Computing? How does it work? Jonathan Moore What are the key.

Cloud Computing Brandon Hixon Jonathan Moore. Cloud Computing Brandon Hixon What is Cloud Computing? How does it work? Jonathan Moore What are the key.
Clouds C. Vuerli Contributed by Zsolt Nemeth. As it started.

Clouds C. Vuerli Contributed by Zsolt Nemeth. As it started.
Security in the Cloud: Can You Trust What You Can’t Touch? Rob Johnson Security Architect, Cloud Engineering Unisys Corp.

Security in the Cloud: Can You Trust What You Can’t Touch? Rob Johnson Security Architect, Cloud Engineering Unisys Corp.
Presented by: Rajdeep Biswas Roll No.: 0104IT071082; Branch: IT (VII Sem.) R.K.D.F. Institute of Science & Technology Cloud Computing When Outsourcing.

Presented by: Rajdeep Biswas Roll No.: 0104IT071082; Branch: IT (VII Sem.) R.K.D.F. Institute of Science & Technology Cloud Computing When Outsourcing.
What is Cloud Computing? o Cloud computing:- is a style of computing in which dynamically scalable and often virtualized resources are provided as a service.

What is Cloud Computing? o Cloud computing:- is a style of computing in which dynamically scalable and often virtualized resources are provided as a service.
Cloud Computing – Risk and Rewards Mark Salamasick Director of Center for Internal Auditing For Austin Chapter of the IIA April 14, 2015.

Cloud Computing – Risk and Rewards Mark Salamasick Director of Center for Internal Auditing For Austin Chapter of the IIA April 14, 2015.
Cloud Computing Will Crowley Monica Lopez Jaimie Morrison.

Cloud Computing Will Crowley Monica Lopez Jaimie Morrison.
Wally Kowal, President and Founder Canadian Cloud Computing Inc.

Wally Kowal, President and Founder Canadian Cloud Computing Inc.
SaaS, PaaS & TaaS By: Raza Usmani

SaaS, PaaS & TaaS By: Raza Usmani
© 2013 PRICE Systems, LLC All Rights Reserved | Decades of Cost Management Excellence 1 Costs of Migration and Operation in the Cloud Arlene Minkiewicz,

© 2013 PRICE Systems, LLC All Rights Reserved | Decades of Cost Management Excellence 1 Costs of Migration and Operation in the Cloud Arlene Minkiewicz,
Does The Cloud Fit Into Your Organization? Tom Horan Meridian IT Inc. VP, Strategic Markets (847) 912-3244.

Does "The Cloud" Fit Into Your Organization? Tom Horan Meridian IT Inc. VP, Strategic Markets (847)
1. 2 New Computing Models, and What They Mean to the Small and Mid Sized Business Consumer How your business can make practical decisions between “The.

1. 2 New Computing Models, and What They Mean to the Small and Mid Sized Business Consumer How your business can make practical decisions between “The.
Cloud Computing Stuart Dillon-Roberts. “In the simplest terms, cloud computing means storing & accessing data & programs over the Internet instead of.

Cloud Computing Stuart Dillon-Roberts. “In the simplest terms, cloud computing means storing & accessing data & programs over the Internet instead of.
Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.

Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.
Plan Introduction What is Cloud Computing?

Plan Introduction What is Cloud Computing?
Banking Clouds V International Youth Banking Forum.

Banking Clouds V International Youth Banking Forum.

Similar presentations

Ads by Google