/home/leansigm/public_html/components/com_easyblog/services<title>Security Questions: How It helps you to analyze cloud risk</title>
<script type="text/javascript">
window.print();
</script>
<div id="blog-title">
	<h1>Security Questions: How It helps you to analyze cloud risk</h1>
</div>

<div class="title-wrapper no-avatar">
	<div class="meta1">
		<div class="inner">
			<span class="post-date">May 13</span>

			<span class="post-category">
				Posted by <a href="/forum/user/894-nishu-soni">Nishu Soni</a>				in <a href="/blog/categories/technology">Technology</a>			</span>
		</div>
	</div>
</div>


<div class="post-content clearfix">
		
	<p class="MsoNormal" style="margin-bottom: 12pt;"><strong><span style="font-size: 10.0pt; mso-ascii-font-family: Calibri; mso-fareast-font-family: 'Times New Roman'; mso-hansi-font-family: Calibri; mso-bidi-font-family: 'Times New Roman'; mso-fareast-language: EN-IN;">“Companies are pushing more sensitive and regulated data into the cloud. But, this journey is raising questions like 'security of data'.”</span></strong></p>
<p class="MsoNormal" style="margin-bottom: 12pt;"><strong><span style="font-size: 10.0pt; mso-ascii-font-family: Calibri; mso-fareast-font-family: 'Times New Roman'; mso-hansi-font-family: Calibri; mso-bidi-font-family: 'Times New Roman'; mso-fareast-language: EN-IN;">Applying software-as-a-service (SaaS), Infrastructure-as-a-service (IaaS) and platform-as-a-service (PaaS) add on some more risk to the organizations</span></strong><span style="font-size: 10pt;">. </span><strong><span style="font-size: 10.0pt; mso-ascii-font-family: Calibri; mso-fareast-font-family: 'Times New Roman'; mso-hansi-font-family: Calibri; mso-bidi-font-family: 'Times New Roman'; color: #00b050; mso-fareast-language: EN-IN;">Ericka Chickowshi</span></strong><span style="font-size: 10pt;">(specializes in information technology and business innovation) in her article “</span><strong><span style="font-size: 10.0pt; mso-ascii-font-family: Calibri; mso-fareast-font-family: 'Times New Roman'; mso-hansi-font-family: Calibri; mso-bidi-font-family: 'Times New Roman'; color: #00b050; mso-fareast-language: EN-IN;">10 security questions to ask a cloud service provider</span></strong><span style="font-size: 10pt;">” at Informationweek, discussed about <strong>10 questions to be asked by companies from SaaS service providers before applying cloud. Some of them are</strong>: </span></p>
<p class="MsoListParagraphCxSpFirst" style="margin-bottom: 12pt; text-indent: -18pt; padding-left: 30px;"><span style="font-size: 10pt; font-family: Symbol;">·<span style="font-size: 7pt; font-family: 'Times New Roman';">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span style="font-size: 10pt;">Do you keep a signed audit trail of which users performed what actions when, both through their UI and API?</span></p>
<p class="MsoListParagraphCxSpMiddle" style="margin-bottom: 12pt; text-indent: -18pt; padding-left: 30px;"><span style="font-size: 10pt; font-family: Symbol;">·<span style="font-size: 7pt; font-family: 'Times New Roman';">&nbsp; &nbsp; &nbsp; &nbsp; &nbsp;</span></span><span style="font-size: 10pt;">What is my role and your role in the protection of my data?</span></p>
<p class="MsoListParagraphCxSpMiddle" style="margin-bottom: 12pt; text-indent: -18pt; padding-left: 30px;"><span style="font-size: 10pt; font-family: Symbol;">·<span style="font-size: 7pt; font-family: 'Times New Roman';">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span style="font-size: 10pt;">Do you encrypt all data transmissions, including all server-to-server data transmissions, within data centers?</span></p>
<p class="MsoListParagraphCxSpMiddle" style="margin-bottom: 12pt; text-indent: -18pt; padding-left: 30px;"><span style="font-size: 10pt; font-family: Symbol;">·<span style="font-size: 7pt; font-family: 'Times New Roman';">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span style="font-size: 10pt;">What is your termination or ‘exit process’ for ensuring successful transition from services to an alternative offering?</span></p>
<p class="MsoListParagraphCxSpLast" style="margin-bottom: 12pt; text-indent: -18pt; padding-left: 30px;"><span style="font-size: 10pt; font-family: Symbol;">·<span style="font-size: 7pt; font-family: 'Times New Roman';">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </span></span><span style="font-size: 10pt;">Do you allow customers to perform scheduled penetration tests of either the production environment or a designated testing environment?</span></p>
<p class="MsoNormal" style="margin-bottom: 12pt;"><span style="font-size: 10pt;">Asking these questions can help you to assess the risk. To know more questions <strong>and their reason for asking</strong>, visit the following link:&nbsp; <br /> <a href="http://www.darkreading.com/informationweek-home/10-security-questions-to-ask-a-cloud-service-provider/d/d-id/1320377" target="_blank">http://www.darkreading.com/informationweek-home/10-security-questions-to-ask-a-cloud-service-provider/d/d-id/1320377</a></span></p></div>

<div class="post-copyright clearfix">
	</div>

<div class="post-tags">
	Tags
		<a href="/blog/tags/security-of-data">
		<span itemprop="keywords">Security of data</span>
	</a>
		<a href="/blog/tags/saas-service-providers">
		<span itemprop="keywords">SaaS service providers</span>
	</a>
		<a href="/blog/tags/software-as-a-service-saas">
		<span itemprop="keywords">Software-as-a-service (SaaS)</span>
	</a>
		<a href="/blog/tags/infrastructure-as-a-service-iaas">
		<span itemprop="keywords">Infrastructure-as-a-service (IaaS)</span>
	</a>
		<a href="/blog/tags/platform-as-a-service-paas">
		<span itemprop="keywords">Platform-as-a-service (PaaS)</span>
	</a>
	</div>

<a rel="nofollow" onclick="window.print();" title="PRINT" href="javascript: void(0)">PRINT</a>