Cloud Computing: Key IT-Related Risks and Mitigation Strategies for Consideration by IT Security Practitioners
Loading...
Date
2010-02-24T19:12:54Z
Authors
Betcher, Thomas J.
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
Although the benefits of cloud computing are well known, safety concerns have received less attention (Rash, 2009). This review of selected literature, published between 2007 and 2009, identifies key IT-related cloud computing risks that should be considered by security practitioners. Three types of cloud computing risks are examined: policy and organizational, technical, and legal. Risk mitigation strategies are also explored, and include audit controls, policies and procedures, service level agreements, and other forms of governance.
Description
This paper was completed as part of the final research component in the University of Oregon Applied Information Management Master's Degree Program [see htpp://aim.uoregon.edu].
Keywords
Cloud computing, Security risk mitigation, Audit controls, Applied Information Management, AIM, Data