Strategic Intelligence for CFOs, Finance Directors, Controllers and Treasurers in Asia  | 
2012, Feb 09

Cloud Computing Can Cut Security Costs

Home > Features > Cloud Computing Can Cut Security Costs
Features

Cloud Computing Can Cut Security Costs

by Andrew Milroy, Frost & Sullivan, 19 May 2010
topics:
Technology
tags:
breaches cloud computing hackers security

The IT industry successfully generates billions of dollars each year by selling us security products and services. Security always plays a major role in any corporate IT purchasing decision. But we are still a very long way from securing our IT environments.

 
Most security breaches are caused internally by employees or other authorized users of corporate systems, such as contractors. It is these groups that are most likely to compromise the integrity of our systems, not external hackers. In spite of this, much more focus tends to be placed on external threats.
 
Each time I work on a client’s site, I am struck by how easy it would be for me to compromise their systems. All I would need to do is insert a thumb drive with malicious code into a USB port and, hey presto, I’ve undermined hugely expensive security investments.
 
It is reckless to allow employees and contractors to carry highly sensitive data around with little consideration of the consequences of losing the laptops and smart phones that house the data. Amazingly, little focus is placed on addressing this particular security threat as well.
 
Enterprises do not sufficiently focus on changing the behaviour of their users by making them aware of security policies and the reasons for those policies. Few ensure adequate control of basic access to their physical premises and to end-points that form part of their network. It also seems as though few enterprises track the location of sensitive data that physically moves around with employees and contractors.
 
Ensuring that everybody who accesses enterprise networks is trained to follow appropriate security policies is an extremely challenging task. For this reason, it is necessary to consider other ways of mitigating the risk of an employee or contractor from compromising security.
 
One way of doing this is to source as much of the enterprise’s computing resources from the cloud as possible. Managing the security of heterogeneous on-premise IT environments is a highly complex and almost impossible task. Minimising the amount of on-premise resources that a corporation manages mitigates risks associated with security breaches enormously. Ensuring that data is stored in a secure environment (in the cloud), rather than on portable devices such as laptops and smart phones also enables corporations to reduce risk.
 
Cloud computing, and I mean public cloud computing, allows us to mitigate risks and, in many cases, offer greater security than can be provided by spending millions of dollars in an attempt to secure on-premise resources.
 
It is true that multi-tenancy and virtualization add a lot of complexity to providing levels of security that many enterprises require. However, public cloud services providers such as Google, Amazon, Microsoft and Salesforce.com focus heavily on ensuring that their data centers follow best practice security policies and are using the most up-to-date security tools. Security can also be tied into service levels. 

 

12next ›last »


Related articles

Comment on this article

The content of this field is kept private and will not be shown publicly.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <a> <p> <span> <div> <h1> <h2> <h3> <h4> <h5> <h6> <img> <img /> <map> <area> <hr> <br> <br /> <ul> <ol> <li> <dl> <dt> <dd> <table> <tr> <td> <em> <b> <u> <i> <strong> <font> <del> <ins> <sub> <sup> <quote> <blockquote> <pre> <address> <code> <cite> <embed> <object> <strike> <caption>
  • Lines and paragraphs break automatically.
  • Use <!--pagebreak--> to create page breaks.

More information about formatting options

Accounting and Regulations

CFO innovation Asia Accounting and Regulation the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Accounting Regulation, IFRS, US GAAP, Tax, investor relations, corporate governance, Corporate Law, Financial Regulators, Internal Audit, Audit, Corporate Law.
Auditing, Investor Relations, Law and Compliance, Tax

Finance and Banking

CFO innovation Asia, Finance and Banking the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Corporate Finance, trade finance, treasury and risk management, capital expenditure, Banking, mergers and acquisitions
Cash and Liquidity Management, Corporate Finance, Insurance, Treasury Management

Management

CFO innovation Asia the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Finance Management, Corporate Governance, Human Resource Management, Compensation and Benefits, Mergers and Acquisitions, Professional Development, Corporate Real Estate, Risk Management, Budgeting and Forecasting, Business Process Management, Business Process Reengineering, Outsourcing.
Budgeting and Planning, Business Expense Management, Human Capital Management, Outsourcing and Shared Services, Risk Management

Metrics

Corporates, Financial Services

Technology

CFO innovation Asia Technology the Asia Pacific resource center for senior finance executives, daily news, analysis, best practice and case studies in Finance Systems, Business Intelligence, EPR, Accounting software, CRM, Cloud Computing, Telecommunications, Business Process Outsourcing, Business Process Management Software.
Business Intelligence, Enterprise Software and Systems, Financial Systems, Security