Managing Risk and Compliance in a Multi-cloud Landscape
With fluctuations in the regulatory space, managing compliance becomes a challenge for IT organizations. Due to the cloud adoption, the complexity level in maintaining compliance has increased creating a tougher time for IT organizations. Today, the IT professionals struggle to manage risk and align with governance practices across an ever-expanding diverse multi-cloud landscape. Businesses are grappling with issues like complex security practices, managing risk and governance, and understanding compliance.
Every cloud service provider has its own security and compliance framework that might change often. Therefore, they adapt to their own security framework as requirements change. Before heading towards a multi-cloud journey, IT organizations must take several steps to bridge the prevailing gaps and ensure compliance.
It’s important for IT firms to develop an end-to-end security and compliance framework that includes regulatory standards, network security, data management, among other requirements. In addition to addressing the growing security requirements, the framework should go beyond both the cloud and on-premises environments. Also, they must evaluate cloud service providers based on that security framework.
Organizations should integrate a security and compliance framework into their service delivery model and make it a key feature in the service catalogue. In that way, IT companies can map individual cloud service providers in the multi-cloud mix as per the compliance requirements based on their security needs. In addition, third-party businesses can be involved in steering risk management and developing compliance and governance strategies.
Rather than a messed up post-deployment, security and compliance should be one of the initial steps in planning a multi-cloud journey in order to bridge the gaps and effectively alleviate risk.
By Leni Kaufman, VP & CIO, Newport News Shipbuilding
By George Evans, CIO, Singing River Health System
By John Kamin, EVP and CIO, Old National Bancorp
By Elliot Garbus, VP-IoT Solutions Group & GM-Automotive...
By Gregory Morrison, SVP & CIO, Cox Enterprises
By Alberto Ruocco, CIO, American Electric Power
By Sam Lamonica, CIO & VP Information Systems, Rosendin...
By Sergey Cherkasov, CIO, PhosAgro
By Pascal Becotte, MD-Global Supply Chain Practice for the...
By Stephen Caulfield, Executive Director, Global Field...
By Shamim Mohammad, SVP & CIO, CarMax
By Ronald Seymore, Managing Director, Enterprise Performance...
By Brad Bodell, SVP and CIO, CNO Financial Group, Inc.
By Jim Whitehurst, CEO, Red Hat
By Clark Golestani, EVP and CIO, Merck
By Scott Craig, Vice President of Product Marketing, Lexmark...
By Dave Kipe, SVP, Global Operations, Scholastic Inc.
By Meerah Rajavel, CIO, Forcepoint
By Amit Bahree, Executive, Global Technology and Innovation,...
By Greg Tacchetti, CIO, State Auto Insurance