Governance and Risk Management in the Cloud with Cloud Controls Matrix V3 and ISO/IEC 38500:2008

Governance and Risk Management in the Cloud with Cloud Controls Matrix V3 and ISO/IEC 38500:2008

Abhik Chaudhuri
ISBN13: 9781466694668|ISBN10: 1466694661|EISBN13: 9781466694675
DOI: 10.4018/978-1-4666-9466-8.ch007
Cite Chapter Cite Chapter

MLA

Chaudhuri, Abhik. "Governance and Risk Management in the Cloud with Cloud Controls Matrix V3 and ISO/IEC 38500:2008." Web-Based Services: Concepts, Methodologies, Tools, and Applications, edited by Information Resources Management Association, IGI Global, 2016, pp. 139-159. https://doi.org/10.4018/978-1-4666-9466-8.ch007

APA

Chaudhuri, A. (2016). Governance and Risk Management in the Cloud with Cloud Controls Matrix V3 and ISO/IEC 38500:2008. In I. Management Association (Ed.), Web-Based Services: Concepts, Methodologies, Tools, and Applications (pp. 139-159). IGI Global. https://doi.org/10.4018/978-1-4666-9466-8.ch007

Chicago

Chaudhuri, Abhik. "Governance and Risk Management in the Cloud with Cloud Controls Matrix V3 and ISO/IEC 38500:2008." In Web-Based Services: Concepts, Methodologies, Tools, and Applications, edited by Information Resources Management Association, 139-159. Hershey, PA: IGI Global, 2016. https://doi.org/10.4018/978-1-4666-9466-8.ch007

Export Reference

Mendeley
Favorite

Abstract

Cloud based services are gaining popularity across the globe and there is a growing interest to adopt the cloud for operational efficiency, green computing initiatives and service agility. However, concerns of security and risks in the Cloud are important constraints to reaping the benefits of Cloud Computing. Controlling the threats and vulnerabilities of Cloud based IT Services are prime necessities with proper policies and guidance from the Business Leadership or Board. While Business is concentrating on cost reduction as a primary enabler for adopting Cloud based Services, there is a growing need for exercising effective Governance and Risk Management to mitigate security risks and to exercise control over data in the Cloud. This chapter discusses how Governance and Risk Management domain (GRM) of Cloud Controls Matrix (CSA CCM) V3 Framework from Cloud Security Alliance (CSA) and the ISO/IEC 38500:2008 standard for IT Governance can be utilized together for an effective Governance and Risk Management of Cloud Services.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.