Cloud computing issues and challenges: The GRC factor

In our latest #GRCchat, tweet jammers discussed cloud computing issues and challenges and explained how governance, risk and compliance factor in.

Recaps from #GRCChat

Cloud providers and customers forced to adapt

GRC plan that streamlines management

The dramatic effect of cloud computing on IT operations in recent years has changed the way CIOs think about data storage, analytics and management. And while the cloud isn't exactly new anymore, risk remains a major pain point, especially given the proliferation of regulatory concerns.

To kick off our recent cloud-themed #GRCchat, we asked participants about their cloud computing issues and challenges, especially in light of emerging governance, risk and compliance (GRC) considerations. Participants suggested that while things have improved, there is still a lot of work to be done, as risk management strategies that make sense now might not make sense in the future:

And then, there's HIPAA, HIPAA, HIPAA. Cloud service providers who don't have the Health Insurance Portability and Accountability Act on their minds risk losing valuable customers:

While keeping compliant with industry regulations, it's also important for organizations to make sure their employees can get the information they need when they need it. We asked, "How can companies ensure timely access to cloud-stored, compliance-relevant regulatory data?" Respondents made clear that employees who require access to data -- whether for business or security purposes -- know exactly where to find that information:

SearchCompliance site editor Ben Cole advises outlining processes to stay on track:

Finally, we asked our #GRCchat participants, "What security or governance features should businesses look for to ensure compliance and reduce risk when seeking cloud services?" Compliance with GRC mandates, business continuity capabilities and encryption were all must-haves cited by #GRCchat-ters:

What GRC-related cloud computing issues and challenges have you encountered? Sound off in the comments below. For more of this conversation, search the #GRCchat hashtag on Twitter. Our next tweet jam will be Thursday, April 17, at 12 p.m. ET. Follow @ITCompliance for topic and expert announcements.

This was last published in April 2014

Dig Deeper on Enterprise cloud compliance



Find more PRO+ content and other member only offers, here.

Related Discussions

Emily McLaughlin asks:

What governance features should businesses look for to ensure cloud compliance and reduce risk?

1  Response So Far

Join the Discussion



Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: