Cloud Service Providers – How to Assess Their Security Efficiently When There Are So Many? A Case Study
This session aims at presenting the challenges of evaluating the security requirements of a multitude of cloud service providers (CSPs) in a mid-sized organization.
Every organization has to deal with an increasing number of CSPs. The services they provide impact multiple layers of the organizations from the applications to the infrastructure and data itself. More and more cloud service proders have the responsibility to handle critical data.
CSPs’ security requirements must be evaluated prior to contracting with them and during the ilfe of the contract, since the relationship can last several years and the CSPs’ compliance with the requirements may vary. Evaluating a limited number of CSPs is feasible. When there are a few dozen providers this becomes a lot more difficult.
Tools and processes are required to perform this evaluation efficiently in an ongoing and coordinated fashion.