CSA’s STAR
Over the summer of 2011, the Cloud Security Alliance (CSA) announced a new initiative, which urged cloud service providers to voluntarily disclose their compliance with CSA-recommended best practices for cloud security. This initiative, known as the Security, Trust & Assurance Registry (STAR), was described by the CSA as “a new initiative to encourage transparency of [...]
Office 365: Model Compliance in the Cloud?
In mid-December 2011, Microsoft Corporation made some notable steps towards compliance with EU and US standards for data protection and security. This addressed the mounting tension around cloud services, caused by a number of high-profile data breaches and security scares that have plagued the cloud environment over the last year or so. This article takes [...]
City of Los Angeles Backs Out of Google Contract
In mid-December 2011, the city council of Los Angeles voted to amend their contract with Google Apps due to security and privacy concerns. Rather than transfer its email services to Google’s cloud, the Los Angeles Police Department (LAPD) decided to back out of its contract, instead opting to stay with its on-site Novell platform for [...]
Developing a Governance Framework in the Cloud
According to industry experts, 2011 has been deemed the “Year of the Data Breach,” unfortunately giving cloud computing the reputation of being insecure. For this reason, it’s essential that organizations in the cloud, as well as organizations considering a move to the cloud, understand and implement an effect governance framework in the cloud. What is [...]
Current Data Security Environment
It’s important that IT decision makers and business managers stay up-to-date with the risks and costs of potential data loss, especially as data is increasingly being moved to the cloud. Developing a proactive data security plan ensures that you will have the necessary information for risk management. It also ensures that you can stay compliant [...]
