Managing Risk and Compliance in a Multi-cloud Landscape
With fluctuations in the regulatory space, managing compliance becomes a challenge for IT organizations. Due to the cloud adoption, the complexity level in maintaining compliance has increased creating a tougher time for IT organizations. Today, the IT professionals struggle to manage risk and align with governance practices across an ever-expanding diverse multi-cloud landscape. Businesses are grappling with issues like complex security practices, managing risk and governance, and understanding compliance.
Every cloud service provider has its own security and compliance framework that might change often. Therefore, they adapt to their own security framework as requirements change. Before heading towards a multi-cloud journey, IT organizations must take several steps to bridge the prevailing gaps and ensure compliance.
It’s important for IT firms to develop an end-to-end security and compliance framework that includes regulatory standards, network security, data management, among other requirements. In addition to addressing the growing security requirements, the framework should go beyond both the cloud and on-premises environments. Also, they must evaluate cloud service providers based on that security framework.
Organizations should integrate a security and compliance framework into their service delivery model and make it a key feature in the service catalogue. In that way, IT companies can map individual cloud service providers in the multi-cloud mix as per the compliance requirements based on their security needs. In addition, third-party businesses can be involved in steering risk management and developing compliance and governance strategies.
Rather than a messed up post-deployment, security and compliance should be one of the initial steps in planning a multi-cloud journey in order to bridge the gaps and effectively alleviate risk.
Cloud Computing Changing Management
By Tom Farrah, CIO & SVP, Dr Pepper Snapple Group
By George Evans, CIO, Singing River Health System
By John Kamin, EVP and CIO, Old National Bancorp
By Phil Jordan, CIO, Telefonica
By Elliot Garbus, VP-IoT Solutions Group & GM-Automotive...
By Dennis Hodges, CIO, Inteva Products
By Bill Krivoshik, SVP & CIO, Time Warner Inc.
By Gregory Morrison, SVP & CIO, Cox Enterprises
By Alberto Ruocco, CIO, American Electric Power
By Sam Lamonica, CIO & VP Information Systems, Rosendin...
By Sven Gerjets, SVP-IT, DIRECTV
By Marie Blake, EVP & CCO, BankUnited
By Lowell Gilvin, Chief Process Officer, Jabil
By Walter Carvalho, VP & Corporate CIO, Carnival Corporation
By Mary Alice Annecharico, SVP & CIO, Henry Ford Health System
By Bernd Schlotter, President of Services, Unify
By Bob Fecteau, CIO, SAIC
By Jason Alan Snyder, CTO, Momentum Worldwide
By Jim Whitehurst, CEO, Red Hat
By Marc Jones, Distinguished Engineer, IBM Cloud Infrastructure