IT departments need to lead Cloud projects: Deloitte
- 19 September, 2011 16:13
Organisations that ignore the IT department when approving Cloud projects will face more than just security challenges, according to a legal expert.
Speaking before his presentation at Computer Audit Control Security (CACS) 2011 in Brisbane, Deloitte technology risk partner, Alastair Banks, said that all parties, including risk and audit staff, should be involved when deciding to investigate moving data or services into the Cloud.
In-depth: Cloud computing strategy guide.
"Cloud is not going to be for everyone and that’s why not every organisation will go down that path," he said. "They should be assessing it [Cloud] and considering if there is business benefit in it, than they can decide if the risks such as security and data privacy can be overcome to deliver those Cloud benefits.”
He gave the example of an Australian organisation that Deloitte worked with that did not involve all the relevant parties, such as the chief information officer, in a Cloud implementation.
"The first time the CIO knew that a Cloud solution had been contracted by the organisation was when he was phoned by the Cloud provider saying that they needed connectivity to the network," he said.
"This is an example where the payroll department simply went out and procured a business service from the Cloud. We have to be careful because the IT department are going to feel challenged by other parts of the business undertaking Cloud projects without their knowledge."
According to Banks, exploration of the Cloud was a great opportunity for technology risk professionals to become the good guys and be seen to be helping the organisation overcome the challenges of Cloud.
“What happened with that organisation is not an ideal situation so make sure there is governance over that project in the same way as any other IT implementation."
Follow Hamish Barwick on Twitter: @HamishBarwick
Follow Computerworld Australia on Twitter: @ComputerworldAU
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
Why change management doesn’t work
Larry Page wants to see your medical records
Dual-Persona Smartphones Not a BYOD Panacea
After two-year hiatus, EFF accepts bitcoin donations again
CIOs struggle to deliver timely mobile business apps: survey
Mobile Load - Performance Testing for Mobile Applications
Key mobile trends and analysis on how performance testers must change their testing methodologies to ensure they are accounting for the changes caused by mobile usage. Download today.
Securing the Road to Virtualization and Beyond
Traditional security controls for enterprise don’t necessarily translate into the new world of virtualisation and cloud environments. When mapping out a secure virtualisation roadmap, click to find out about pave a more secure, risk free path.
Vodafone Ireland Implements World-Class Service Excellence with HP BSM
Shane Gaffney, head of IT operations explain how HP Business Service Manager solutions have helped Vodafone to transform from a reactive to a proactive IT Operations function, and to align their priorities to match the business and drive business value, delivering 300% ROI in one year. Download today.