Is compliance ‘clouding’ your judgment?

Cloud computing is growing, both as an external business tool and as a way to better manage IT in the enterprise. According to the Cloud Industry Forum, over 75 per cent of UK businesses will use at least one cloud service by the end of 2013 as companies jump at the chance to reduce their infrastructure, lower costs and become more agile.

This surge in cloud adoption has created a more stringent regulatory environment. Companies are becoming increasingly concerned about the security of their sensitive information in the cloud and the potential for the data to be exposed to a multitude of risks. Whether it be theft of sensitive information, surveillance in the cloud or penalties for non-compliance, numerous factors fuel concerns for the security of personably identifiable information.

Many organisations commonly assume that working with a cloud provider would either satisfy the compliance requirements or shift security responsibility to the cloud provider. However, a wide range of regulations and privacy laws make organisations directly responsible for protecting their own information.

SOURCE: blogs.techworld.com

Information Security Buzz