This question was asked by an attendee during the Proformative
A video of the webinar can be viewed here https://www.proformative.com/resources/webinar-video-whats-stopping-cfos-moving-
How can you be sure the cloud provider is doing all it can to keep your data secure? (Webinar Attendee Question)
Answers
Your best option is to ask for a copy of their security audit report. You will want to have a security expert review this report and compare it to industry best practices.
In some cases, you can hire a third party company to conduct a 'mock attack' and review the results - although most larger companies won't allow this because the mock attack is disruptive.
You want to make sure the cloud provider can meet any industry-specific compliance that your company is required to adhere to (i.e., SOX, HIPAA, etc.). You should ask them if they have systems in place like IDS (Intrusion Detection) and IPS (Intrusion Protection) and whether they’re able to support security for data at rest. Make sure there are guarantees within the contract with your cloud provider. One quick way to determine the maturity of the practice is to ask to speak to their security specialist – if they don’t have one, that’s a red flag.
Filed Under:
Technology