Compliance in the Cloud: Don’t Forget It’s Still Your Stuff!

Presented by

Diana Kelley; Partner at Security Curve

About this talk

Moving data and services “stuff” (including personally identifiable information and protected health information) to a cloud computing model is a bit like putting important things in a high-end storage facility. Though it’s tempting to want to transfer all risk to the cloud provider or reseller, the ultimate accountability for stewardship and governance of your sensitive customer and employee data is yours. In this talk we’ll take a look at some basic cloud architectures and use cases and discuss how companies can manage their compliance risk when moving data and services to the cloud. And list ways in which you can increase compliance effectiveness with your cloud provider during contract negotiation. We’ll also take a look at why using public clouds may not be the best fit for some highly sensitive or protected data.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (1369)
Subscribers (42893)
Increasing expectations for good data governance, effective risk management and complex demands for legislative and regulatory compliance are presenting a growing challenge for organizations of all sizes. Tune in to live and recorded presentations by respected luminaries in the fields of governance, risk and compliance for insights on how to implement successful GRC strategies and processes for your organization.