Enterprises want more public cloud – yet security issues block their path

A new survey released by AlgoSec sets the scene on organisational cloud deployments: almost a third of respondents say they plan to increase their public cloud usage in the next 12 to 18 months, but major security challenges remain across hybrid enterprise networks both during and after migrations.

The study, titled ‘Hybrid Cloud Environments: The State of Security’, polled 450 senior security and network professionals and found a lack of visibility and managing security policies consistently were...

By James Bourne, 31 October 2017, 0 comments. Categories: Compliance, Enterprise, Hybrid, Infrastructure, Public.

Why combining access governance with authorisation management is key to identity success

In virtually every organisation or university, data is stored on multiple file servers throughout the network, often in a somewhat haphazard or random structure. Access to the data is likely just as unstructured and may put the organisation at risk by allowing employees access rights where none are required. Managing access to this unstructured data is incredibly difficult, resulting in a significant challenge when the time for an IT audit rolls around.

There are methods to bring order to this madness and...

By Dean Wiech, 17 October 2017, 0 comments. Categories: Best Practice, Compliance, Security, Software.

Half of companies fail to meet PCI DSS compliance standards: Is your infrastructure up to it?

Only 55.4% of companies meet all PCI DSS compliance standards, according to a new report released by Verizon. While this number is up 7% from 2015, it still translates to nearly half of retailers, IT services companies, payment software providers and hospitality organisations do not adequately protect credit cardholder information.

Companies had the greatest difficulty meeting the following requirements, many of which are related to infrastructure compliance and policies:

  • Requirement 3 – Protect...

By Logicworks, 22 September 2017, 0 comments. Categories: Applications, Compliance, Infrastructure, Security.

Why businesses must not assume GDPR compliance in the cloud

You may have noticed that more companies are storing data in the cloud and utilising cloud-based services than ever before. But many are failing to ensure that the data is secured or stored in a compliant manner, placing themselves and their customers at risk from data breaches.

With the European Parliament passing the new General Data Protection Regulation (GDPR) last year, businesses have less than a year before fundamental changes to the way they store and secure data come into effect. As cloud adoption...

By Joseph Pindar, 02 June 2017, 0 comments. Categories: Compliance, Data Management, Data Sovereignty, Europe.

One year GDPR countdown is a final warning for organisations to sort compliance out

May 25 2018 will see the General Data Protection Regulation (GDPR) legislation come into effect.

Organisations will by now be more than aware of the penalties – 4% of annual turnover or €20 million (£17.3m), whichever is greater, and if not take this as your final warning – but how are companies reacting to it?

Keyrus is a data intelligence and master data management (MDM) provider. The company has been putting its message out there at various events – including at the Information...

By James Bourne, 25 May 2017, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Europe, Security.

Don’t let your data get out of control: Six steps to cloud governance success

(c)iStock.com/erhui1979

Cloud usage is accelerating at a rapid rate, and it’s showing no signs of slowing down. Right now, 90 percent of all companies are using the cloud in some way, and, in the next 10 years, spending on public cloud alone is slated to multiply by a factor of five to $500 billion, according to recent studies by North Bridge and Wikibon.

Enterprises are launching new infrastructure at a furious pace, migrating workloads of all kinds and big chunks of data to public and private cloud...

By Melodye Mueller, 12 April 2017, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Security.

Oracle secures ISO 27001, HIPAA and SOC certifications for its cloud portfolio

Oracle has announced its public cloud services have achieved various security and compliance certifications, including ISO 27001, HIPAA, SOC1 and SOC2, in what the company describes as ‘continued momentum’ for its products.

The Redwood giant’s platform as a service (PaaS) and infrastructure as a service (IaaS) has received Service Organisation Control (SOC) attestations across a variety of key services, while its Fusion software as a service (SaaS) is HIPAA-accredited and the ISO 27001 was...

By James Bourne, 03 April 2017, 2 comments. Categories: Compliance, Industry, Infrastructure, Platform, Security, Software.

Microsoft study warns of difficulty organisations face in attracting cloud skills

More than one in three companies admit it has been either ‘difficult’ or ‘very difficult’ to find specific cloud skills for their organisation, according to a new study from Microsoft.

The dreaded ‘cloud skills gap’ has been long reported by this publication – ‘the trend will continue further through 2013’, this reporter once warned – but in the Microsoft...

By James Bourne, 29 March 2017, 0 comments. Categories: Adoption, Best Practice, Compliance, Microsoft.

Analysing compliance in the health industry (Español)

If you work in the health industry, you'll already be familiar with how 'tickbox' courses work. A set of slide titles down the side; a narration that more than likely just repeats what's written on the slides; an easy multiple choice question at some point to 'prove' that employees understand the course; and a metaphorical tick at the end. Well done, you've ticked off compliance.

But who is that helping - and is it even helping the employer? This whitepaper from Blackboard assesses...

By James Bourne, 16 March 2017, 0 comments. Categories: Compliance.

Access governance and the cloud: Security and organisational insight are the bottom line

How does access governance apply to the cloud? Well, while the cloud has been established as a standard for many organisations, access and governance to manage such solutions has not yet become a standard solution.

Access governance helps organisations of all sizes in every industry by ensuring that each employee has the correct access to the systems that they need to perform their jobs while keeping the company’s data and network secure. Access governance specifically allows organisational leaders to...

By Dean Wiech, 13 March 2017, 0 comments. Categories: Applications, Compliance, Data & Analytics, Data Management, Security.