Above the Clouds: Managing Risk in the World of Cloud Computing

Above the Clouds: Managing Risk in the World of Cloud Computing

Description

Interested in ways to make your business more efficient? Then Cloud Computing may be just what you have been looking for. Cloud Computing can enable you to drive down the costs of your IT function and gives you the ability to focus on your core business, whilst saving energy. The concept of shifting computing to a shared service provider is not new. What is new is that the cost of Cloud Computing is falling so dramatically that considering outsourcing to the Cloud is no longer rare. And, in an era of tight budgets, the opportunity to make financial savings means that Cloud Computing looks especially attractive. "Above the Clouds: Managing Risk in the World of Cloud Computing" acts as a primer and strategic guide to identify Cloud Computing best practices and associated risks, and reduce the latter to acceptable levels. From software as a service (SaaP) to replacing the entire IT infrastructure, the author serves as an educator, guide and strategist, from runway to getting the organization above the clouds. Valuable tips on how to choose your provider of Cloud Services are also offered. The author, Kevin T. McDonald is a Senior Information Technology Analyst and Cloud Strategist for ICF International Inc, a consulting firm in Washington, DC. A member of the Tech America Cloud Computing Committee and the Cloud Security Alliance, Kevin has over 25 years` experience in IT, choosing to specialize in cyber security, infrastructure protection and business continuity. Buy this book and take your business on a journey above the Clouds!

Table of contents

What is Cloud Computing?......Page 5
Simplicity versus complexity......Page 6
The way ahead......Page 7
ABOUT THE AUTHOR......Page 9
ACKNOWLEDGEMENTS......Page 10
CONTENTS......Page 11
INTRODUCTION......Page 16
Virtualization......Page 17
Time slice......Page 18
Public, private, community and hybrid Clouds......Page 19
SaaS, IaaS and PaaS......Page 23
Trusting the Cloud: stop, go or caution......Page 26
CHAPTER 1: SETTING COURSE TO THE CLOUDS......Page 28
Renting versus owning infrastructure......Page 29
The larger they are, the less likely they are to fall......Page 31
Going virtual......Page 32
Cloud platforms and rapid system prototyping......Page 33
Patch management services......Page 34
Cloud bursting: surge capacity......Page 36
Symphony......Page 37
Crowdsourcing and social networking......Page 38
The operating system......Page 40
Green computing: power and the grid......Page 41
Core competencies of the data center staff......Page 43
Increased utilization......Page 44
24/7 watch centers......Page 45
Capital expenses replaced with operational expenses......Page 46
External certification and quality of service......Page 47
CHAPTER 2: PREFLIGHT CHECK......Page 48
Computing as a utility......Page 49
Elasticity......Page 50
Baseline service levels......Page 51
Targeting legacy systems......Page 52
Planning for staff transition......Page 53
Economies of scale......Page 54
Bigger pipes are better......Page 55
Moving big iron (mainframes) to the Clouds......Page 56
Storage in the Cloud......Page 57
Bandwidth and try it before you buy it......Page 58
Pod computing reduces configuration time......Page 59
Calculating cost benefit......Page 61
Choosing a service provider......Page 64
Types of Cloud services......Page 65
Risk assessment and gap analysis......Page 67
Certifications - caveat emptor, let the buyer beware!......Page 69
Measuring service levels......Page 73
User expectations and response time......Page 75
Culture of compliance......Page 76
Early adoption techniques......Page 79
Human resources and background checks......Page 82
Multi-tenancy......Page 83
Avoiding miscommunication with the service provider......Page 85
Reduce the risk by converting only new applications......Page 88
One size does not fit all......Page 89
People again......Page 90
Depth on the bench......Page 93
Financial health of the service provider......Page 94
Financial risk......Page 95
Organizational impact: what would happen if?......Page 96
Continuity plans: keep going if the worst happens......Page 97
External versus internal hosting providers......Page 98
Strategies for managing change......Page 104
Break the project into smaller parts for pilot projects......Page 105
Testing......Page 106
Certification of data centers......Page 110
Continuity of operations planning......Page 111
Data loss prevention......Page 112
Stay in touch with the Cloud!......Page 113
People, process, and then technology......Page 114
Certifications matter......Page 116
Recognize the risk in order to avoid the consequences......Page 120
Defense in depth strategies......Page 121
Cloud security operation centers......Page 123
User provisioning......Page 124
Security and authentication in the Cloud......Page 125
If its on the Internet, it belongs in the Cloud......Page 127
E-mail in the Clouds......Page 128
Case study: backup and recovery centers......Page 130
Reducing the noise......Page 131
Attack surfaces multiply......Page 132
Security in the Cloud......Page 133
Server logs......Page 135
Linking systems dynamically......Page 136
Mashups......Page 137
Privacy versus security......Page 138
Organizing the Cloud environment......Page 139
The portal model......Page 140
Pilot projects......Page 143
Backing up the Cloud......Page 144
What value is added by the Cloud?......Page 145
Complexity equals inherent risk......Page 146
Reduce the complexity of the organization......Page 147
E-mail service and web hosting......Page 148
Using Web 2.0 to support internal clients......Page 149
Case study: voice in the Clouds......Page 150
Quality of service and net neutrality......Page 152
Case study: online storage in the Cloud......Page 153
Case study: moving a webzine to the Cloud......Page 154
Transition......Page 160
The paradigm of the automated teller machine......Page 161
Staged conversion: parallel testing......Page 162
ITG RESOURCES......Page 164

Details

  • Author: Kevin T. McDonald
  • Edition: 1st
  • Publication Date: 2010
  • Publisher: IT Governance Publishing
  • ISBN-10: 1849280312
  • ISBN-13: 9781849280310
  • Pages: 166
  • Format: pdf
  • Size: 4.6M
Download Now