Moving data storage to the cloud? What’s your business continuity plan?
Many trumpet increased availability as a reason to move to the cloud but what happens when your cloud provider is no longer available?
Some companies are faced with this very question this week as storage provider, EMC announced its plan to shut down its Atmos Online cloud storage service immediately, according to a posting on its website.
EMC launched Atmos Online in May 2009, calling it “Cloud Optimized Storage [with] capabilities that can scale effectively, coupled with security and management tools.” This placed EMC in direct competition with some of its service provider partners who used EMC’s Atmos technology to provide cloud storage to its customers.
EMC has now downgraded Atmos Online to a development platform and is offering no guarantee as to the availability of user data moving forward. EMC used its web posting to “strongly encourage [companies to] migrate any critical data or production workloads currently served via Atmos Online to one of our partners offering Atmos based services,”
The provider going out of business is one of the many risks companies have to address when considering moving their critical data into the cloud. In this case, companies now have to spend resources doing the necessary due diligence in selecting an alternative cloud storage provider.
According to Morris Cody, CIO at Washington D.C. based Information Security Services Firm, Secure Intervention, companies moving to the cloud better consider the following:
2) BCP – Having a business continuity plan in place that will work in conjunction with you cloud provide capabilities will mitigate the risk of an outage do to an scheduled / unscheduled event (not necessarily a disaster) in you cloud provider environment.
3) SLA – a strong SLA should be established with your cloud provider that will hold them accountable for losses or damages (define losses and damages) do to changes in their environment that effect your business. For example, if your cloud provider decides to shutdown the cloud hosting services, then they should be responsible for the cost to migrate your apps/data to the new hosting provider”
|
William J McBorrough is a Security Expert with many years of success Managing, Designing, and Implementing medium and large enterprise Physical and Information Technology Security Solutions. His experience spans the spectrum from small e-commerce start-ups to multi-campus state and federal agencies to global financial sector organizations. He is on the faculty of various universities including University of Maryland University College, EC-Council University, George Mason University and Northern Virginia Community College where he conducts research and teach graduate and undergraduate courses relating to cybersecurity, cybercrime, cyberterrorism, and information security and assurance. He holds a Bachelors of Science in Computing Engineering with a concentration in digital networks and a Masters of Science in Information Security and Assurance. He is a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in Risk Information System Control (CRISC), and Certified Ethical Hacker (CEH).He is well versed in personnel, systems and network security risk management. His core competencies include Developing cost effective solutions to enable mission assurance in the following areas: Enterprise Risk Management, IT Governance, Security Organization Development, Information Security and Assurance
|
Related posts:
- The real arguments for Cloud Computing
As more vendors dive into the cloud computing market, every possible claim regarding the supposed benefits of moving to a cloud-based service is being made. I ran across an article... - Will your Cloud Provider be around in two years?
I just read that my hosting company, GoDaddy, is on the auction block to be sold to the highest bidder. Naturally, I’m thinking of how this change of ownership could... - Cloud Computing = Loss of Confidentiality?
Interesting excerpt from article in ITWorldCanada: “Adi Shamir, a computer science professor at Israel’s Weizmann Institute of Science and also the “S” in the RSA encryption algorithm, warned against trusting... - Exploring Cloud Computing Information Leakage
If you are in cloud computing security (or part of an organization with infrastructure in a public cloud), this paper is a must read. As more organizations seek to realizes...