https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

Uncategorized


What You Need to Know About Cloud Compliance

  • Written by EVault Guest Blog 2
  • February 9, 2012
You want to provide cloud-connected services to your customers. That’s a given. But when and how? There’s a lot to consider, including cloud adoption, regulations and compliance, and a slew of other topics aimed at helping organizations understand what is involved when moving to the cloud.

You want to provide cloud-connected services to your customers. That’s a given. But when and how? There’s a lot to consider, including cloud adoption, regulations and compliance, and a slew of other topics aimed at helping organizations understand what is involved when moving to the cloud.

Based on our experience at EVault, we’ve boiled down the information we’ve gathered to bring you the nuts and bolts of what to consider & the most important takeaways you should keep in mind to safely move your business and your customers’ businesses to the cloud.

To Cloud or Not to Cloud?

Half of midsized companies are either pursuing cloud-based services as part of their business practices, or are in their near-term implementation. The biggest issue when determining whether to move to the cloud is data security.

Customer Trust

Cloud consumers and cloud providers have an intimate relationship in which cloud consumers are entrusting their data to the cloud provider. Customers expect their cloud provider to give them some assurance from a third party that they are actually doing the right things.

Mounting a Strong Defense with Information Security and Compliance

Cloud computing is very complex and companies must look at all areas of secure environments. Companies with a cloud infrastructure must protect and secure information using technology, firewalls and access controls for incident response, disaster recovery and business continuity.

Define an Information Security Policy

Many organizations don’t have a written formal security policy, which jeopardizes communication and planning with service providers. The Internet is full of standards and policy templates, including the ISO 27001 and a template from SANS.

Classify All Information Assets

After defining what information is being protected, you must define your assets, which outlines where your customer’s sensitive and critical information is and who (including their cloud service provider) needs have to have access to it.

Data Location and Regulations

Cloud consumers want to know exactly where their data is and don’t want it to cross borders without their being notified. Customers depend on the cloud provider to understand their needs for data location and notification. You can help them put the policies in place for these controls, so that you as their provider can be accountable.

Perform a Risk Assessment

For the last step involved when sending your customer’s data to the cloud, find out what are the business practices they need to continue to operate and look for threats. This should be done on a recurring basis and your consulting services can help.

Trust and Verify

Customers must be able to trust and verify their service provider. In the late 90s , the financial community had an open organization called BITS. The organization looked to ensure that a service provider’s offerings were analyzed for their security controls and to make sure that there was a standard audit process.  “Good” companies are doing SAS 70 or their SSAE 16 at a SOC level 2 that encompasses all security features.  “Excellent” ones have gone through an ISO 27001 certification by the international community, though they are very rare.

Summary

These are some of things your customer will want to know you can offer when moving their organization to the cloud.  Make sure you can help them understand the importance of compliance and security within the cloud, defining an information security policy, defining their assets and how to verify and choose a cloud service provider who can deliver these important things.  Namely, you.

Felix Santos, CISA, CISM, ISSM, is responsible for Compliance and Information Security for EVault, the online backup company. Monthly guest blogs such as this one are part of Talkin' Clouds annual platinum sponsorship. Read all EVault guest blogs here.

Tags: Uncategorized

Related


  • What You Need to Know About Cloud Compliance
    FinancialForce

  • Microsoft Inspire: News Summary for Day 3
    On day three of Microsoft Inspire we heard about Microsoft's efforts at being a good citizen in relationship to its products and services plus we learned more about the sales organization changes that are coming.
  • Microsoft CEO Satya Nadella gives the 39Vision Keynote39 speech during a Microsoft Inspire event at the Verizon Center on July 10 2017 in Washington DC
    Microsoft Inspire 2017: 5 Must-Watch Sessions for Partners
    Catch up on what you missed in the comfort of your own home or office with these hand-picked on-demand sessions.
  • Microsoft Inspire: Beyond Three Launch Vendors, Azure Stack to Provide Wider Ecosystem Opportunity
    While there are only three vendors who are launching Azure Stack appliances in September, Microsoft has assured partners that there will be lots of opportunity for them to be a part of the ecosystem.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • MSPmentor 501: 2017 North America Rankings 100 to 51
  • MSPmentor 501: 2017 North America Rankings 50 to 1
  • Microsoft Inspire: Simplify, simplify, simplify. Or at least shove the complexity out of view.
  • MSPmentor 501: 2017 Edition Ranked 350 to 301

Galleries

View all

New, Changing Partner Programs: AWS, Tech Data, Avaya, Verizon

January 11, 2021

Industry Perspectives

View all

The Right Data Migration Tool Helps Schools Move to Cloud During COVID Crisis

January 19, 2021

Cloud-Based CRM: What SMBs Need to Know about Backup and Recovery

January 19, 2021

Cybersecurity: What to Expect in 2021

January 19, 2021

Webinars

View all

Who’s Behind the Mask? Hacker Personas Explained

January 26, 2021

Your Network Perimeter Has Changed

February 18, 2021

How Managed Hosting Providers Thrive with the Alternative Cloud

February 24, 2021

White Papers

View all

Why Subscription Business Model

January 15, 2021

The Ultimate MSP Guide to Sales Efficiency

January 14, 2021

Eight Reasons Why MSPs Need IT Industry-Specific Sales Tools

January 14, 2021

Upcoming Events

View all

Channel Partners Virtual

March 2, 2021 - March 4, 2021

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

bit.ly/2Y0kFZh twitter.com/Craig_Galbrait…

January 21, 2021
ChannelFutures

Our latest #Cybersecurity Roundup features @BitSight and @kovrrIns, @Vectra_AI and @AppOmniSecurity,… twitter.com/i/web/status/1…

January 20, 2021
ChannelFutures

.@solarwinds hackers target @Malwarebytes, impacting internal emails. #cybersecurity dlvr.it/RqzkZp https://t.co/aWqLjCCW9y

January 20, 2021
ChannelFutures

.@citrix $2.25 deal to acquire @wrike expands @CitrixPartners network into collaborative work management.… twitter.com/i/web/status/1…

January 20, 2021
ChannelFutures

.@Carbonite Migrate uses real-time replication to move workloads to #cloud with minimal risk and near-zero downtime… twitter.com/i/web/status/1…

January 20, 2021
ChannelFutures

Backup and recovery is essential for #cloud-based CRMs @ConnectWise #SaaS #dataprotection #cloudbackup #databackup… twitter.com/i/web/status/1…

January 19, 2021
ChannelFutures

You an #MSSP looking to avoid a #SolarWinds-type breach? @Asigra, @Barracuda, @CynetSystems give advice. Don’t blam… twitter.com/i/web/status/1…

January 19, 2021
ChannelFutures

What to expect in 2021 @Webroot #cybersecurity #MSP #remoteworkforce #remoteworking #Carbonite… twitter.com/i/web/status/1…

January 19, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X