Quite often, cloud service providers neglect to make security and compliance of their cloud environments their responsibility. Many service providers leave it to the client to manage their own security. This is not ideal. The client cannot control all elements of the environment and is at a disadvantage. It is startling to me, that 69% of cloud service providers do not believe that security is their responsibility, and even more, do not offer easy to implement security controls as a service according to the Ponemon Institute in 2011.
Why should you care?
- Cost of a data breach is $214/record. This adds up when multiplied by thousands of records.
- Cost of non-compliance is 2.65 times higher than the cost of compliance.
- In 2011, 22.9 million records were exposed as a result of hacking, and 81% of those records included social security numbers.1
Given that a data breach can be costly or even devastating to a business we believe there are 5 questions you need to ask your service provider. I walk through these questions in my video blog.
Compliance in the Cloud: 5 Questions to Ask Your Service Provider
 2011 Breach List, Identity Theft Resource Center
Photo credit: Primus Pares
About the Author: As Vice President of Product Management at Layered Tech, Kevin Van Mondfrans (@VANMONDFRANS | +Kevin Van Mondfrans) is responsible for driving the Layered Tech portfolio of infrastructure as a service (IaaS) and managed service offerings. With more than 20 years of experience product development and marketing, Kevin has been delivering innovative computing, storage, cloud and service offering with companies such as HP, Dell, and Savvis.