While I was away on paternity leave, Computer Weekly published my feature on cloud computing, security and audit trails. Here’s the intro, with a link to the full article below:
“Do you fear the auditor more or the attacker?” asks Peter Bassill, chief information security officer at gambling giant Gala Coral Group.
It is a key question for IT leaders thinking of dabbling in on-demand computing provision through the cloud. For Bassill, there is only one answer, particularly for firms operating in highly regulated sectors: “A lot of companies fear the auditor more. If you hold data internally, you can show the auditor your controls, but the cloud makes such demonstrations more difficult.”
The resulting complications mean many businesses still shy away from on-demand IT. About 40% of UK companies use cloud computing systems, according to the Information Systems Audit and Control Association. This represents a significant proportion of British organisations, but implementation levels – certainly with regards to large-scale enterprise systems – are nowhere near matching the cacophonous intensity of supplier hype.
For the full feature, click here.