https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

Cloud


What You Need to Know About Cloud Compliance

  • Written by EVault Guest Blog 1
  • February 9, 2012

You want to provide cloud-connected services to your customers. That’s a given. But when and how? There’s a lot to consider, including cloud adoption, regulations and compliance, and a slew of other topics aimed at helping organizations understand what is involved when moving to the cloud.

Based on our experience at EVault, we’ve boiled down the information we’ve gathered to bring you the nuts and bolts of what to consider & the most important takeaways you should keep in mind to safely move your business and your customers’ businesses to the cloud.

To Cloud or Not to Cloud?

Half of midsized companies are either pursuing cloud-based services as part of their business practices, or are in their near-term implementation. The biggest issue when determining whether to move to the cloud is data security.

Customer Trust

Cloud consumers and cloud providers have an intimate relationship in which cloud consumers are entrusting their data to the cloud provider. Customers expect their cloud provider to give them some assurance from a third party that they are actually doing the right things.

Mounting a Strong Defense with Information Security and Compliance

Cloud computing is very complex and companies must look at all areas of secure environments. Companies with a cloud infrastructure must protect and secure information using technology, firewalls and access controls for incident response, disaster recovery and business continuity.

Define an Information Security Policy

Many organizations don’t have a written formal security policy, which jeopardizes communication and planning with service providers. The Internet is full of standards and policy templates, including the ISO 27001 and a template from SANS.

Classify All Information Assets

After defining what information is being protected, you must define your assets, which outlines where your customer’s sensitive and critical information is and who (including their cloud service provider) needs have to have access to it.

Data Location and Regulations

Cloud consumers want to know exactly where their data is and don’t want it to cross borders without their being notified. Customers depend on the cloud provider to understand their needs for data location and notification. You can help them put the policies in place for these controls, so that you as their provider can be accountable.

Perform a Risk Assessment

For the last step involved when sending your customer’s data to the cloud, find out what are the business practices they need to continue to operate and look for threats. This should be done on a recurring basis and your consulting services can help.

Trust and Verify

Customers must be able to trust and verify their service provider. In the late 90s , the financial community had an open organization called BITS. The organization looked to ensure that a service provider’s offerings were analyzed for their security controls and to make sure that there was a standard audit process.  “Good” companies are doing SAS 70 or their SSAE 16 at a SOC level 2 that encompasses all security features.  “Excellent” ones have gone through an ISO 27001 certification by the international community, though they are very rare.

Summary

These are some of things your customer will want to know you can offer when moving their organization to the cloud.  Make sure you can help them understand the importance of compliance and security within the cloud, defining an information security policy, defining their assets and how to verify and choose a cloud service provider who can deliver these important things.  Namely, you.

Felix Santos, CISA, CISM, ISSM, is responsible for Compliance and Information Security for EVault, the online backup company. Monthly guest blogs such as this one are part of Talkin’ Clouds annual platinum sponsorship. Read all EVault guest blogs here.

Tags: Cloud Service Providers Digital Service Providers MSPs VARs/SIs Cloud From the Industry

Related


  • Microsoft Teams Group Display and Mobile
    Microsoft, SAP Plan Teams Integration, Expand Cloud Migration Pact
    Native Teams integration is coming to SAP business apps this summer.
  • Distribution
    HPE Appoints Longtime HPE/HP Vet as Worldwide Distribution Head
    More than 80% of HPE's indirect business goes through distribution.
  • Woman Thumbs Up
    Industry Experts Laud Biden Proposal for Increased Federal Cybersecurity Spending
    The plan includes increasing Cyber Security and Information Security Agency (CISA) funding.
  • Cloud Roundup
    Judge: AWS Does Not Have to Reinstate Parler
    Plus, this cloud news roundup includes a new board member at SADA, and certifications for Ensono and Navisite.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • SolarWinds Hackers Hit Malwarebytes, But Impact Limited to Internal Email
  • Citrix to Acquire Wrike for $2.25 Billion, Expand SaaS Portfolio
  • The Right Data Migration Tool Helps Schools Move to Cloud During COVID Crisis
  • Cloud-Based CRM: What SMBs Need to Know about Backup and Recovery

Galleries

View all

New, Changing Partner Programs: AWS, Tech Data, Avaya, Verizon

January 11, 2021

Industry Perspectives

View all

Partners Share Their 2021 Goals—and Plans for Achieving Them

January 26, 2021

The Importance of Being Security-Centric

January 22, 2021

Cyberattacks: Threat Hunters Conquer Unpredictability with 3 Measures

January 21, 2021

Webinars

View all

Your Network Perimeter Has Changed

February 18, 2021

In Case of Emergency: The Importance of Proactive Critical Event Management

February 23, 2021

How Managed Hosting Providers Thrive with the Alternative Cloud

February 24, 2021

White Papers

View all

Product Brief: Kaseya VSA Integrated Workflows with BMS and IT Glue

January 26, 2021

Why Subscription Business Model

January 15, 2021

The Ultimate MSP Guide to Sales Efficiency

January 14, 2021

Upcoming Events

View all

Channel Partners Virtual

March 2, 2021 - March 4, 2021

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

Partners share 2021 goals and tips to achieve them. @ConnectWise #SMB #cybersecurity #MSP dlvr.it/RrPzKJ https://t.co/gBsXooSnnB

January 27, 2021
ChannelFutures

Product Brief: Kaseya VSA Integrated Workflows with BMS and IT Glue dlvr.it/RrPJWz https://t.co/qFvS3o0XIZ

January 26, 2021
ChannelFutures

.@SaaSAlerts_hires @KaseyaCorp vet as new CEO. #MSP #cybersecurity dlvr.it/RrNyQx https://t.co/XzKxQbmrhr

January 26, 2021
ChannelFutures

.@untangle_inc partners say #cybersecurity spending will increase this year due to media coverage of cyberattacks.… twitter.com/i/web/status/1…

January 26, 2021
ChannelFutures

Native @MicrosoftTeams integration coming to @SAP apps. dlvr.it/RrKz34 https://t.co/tM7SQaaOHl

January 26, 2021
ChannelFutures

#Biden, @CompTIA both launch big #cybersecurity efforts (separately). dlvr.it/RrKr54 https://t.co/hXEw2CGUMZ

January 25, 2021
ChannelFutures

.@HPE appoints new head of worldwide distribution. #cloud dlvr.it/RrKJLT https://t.co/FW0OUTDJFF

January 25, 2021
ChannelFutures

Following its acquisition of SAP specialist Pioneer B1, new @SapphireSystems GM reveals "buy and build" growth stra… twitter.com/i/web/status/1…

January 25, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X