Control Cloud to Manage Security and Risk
Why it's Essential to Manage Security, Risk, and Compliance
By David Kissane
Ensuring IT risks are managed, and compliance requirements are met has only intensified with the recent rapid growth in adoption of cloud services. Deployment of production workloads, migration of regulated systems and increasing storage of large volumes of data in the cloud has driven the need for security and controls to be deployed across customer cloud environments.
Within large enterprises, the need to manage security, risk and compliance is essential to maintain customer confidence, minimise system outages and comply with regulatory requirements.
Typical approaches to risk management that we have seen in the cloud have taken a bottom up approach. This is, they have relied on technical teams applying technical controls within the cloud environment, primarily focussing on security, with limited linkage to overarching enterprise risk appetite.
As enterprise cloud adoption continues to accelerate, assisted in part by COVID19, the need to ensure compliance whilst enabling use of innovative new services will be essential for organisations to take advantage of the inherent cloud benefits.