Subscribe to CIO Magazine »

IT departments need to lead Cloud projects: Deloitte

Technology risk partner urges unified approach to Cloud implementations

Organisations that ignore the IT department when approving Cloud projects will face more than just security challenges, according to a legal expert.

Speaking before his presentation at Computer Audit Control Security (CACS) 2011 in Brisbane, Deloitte technology risk partner, Alastair Banks, said that all parties, including risk and audit staff, should be involved when deciding to investigate moving data or services into the Cloud.

In-depth: Cloud computing strategy guide.

"Cloud is not going to be for everyone and that’s why not every organisation will go down that path," he said. "They should be assessing it [Cloud] and considering if there is business benefit in it, than they can decide if the risks such as security and data privacy can be overcome to deliver those Cloud benefits.”

He gave the example of an Australian organisation that Deloitte worked with that did not involve all the relevant parties, such as the chief information officer, in a Cloud implementation.

"The first time the CIO knew that a Cloud solution had been contracted by the organisation was when he was phoned by the Cloud provider saying that they needed connectivity to the network," he said.

"This is an example where the payroll department simply went out and procured a business service from the Cloud. We have to be careful because the IT department are going to feel challenged by other parts of the business undertaking Cloud projects without their knowledge."

According to Banks, exploration of the Cloud was a great opportunity for technology risk professionals to become the good guys and be seen to be helping the organisation overcome the challenges of Cloud.

“What happened with that organisation is not an ideal situation so make sure there is governance over that project in the same way as any other IT implementation."

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: ACS, etwork, Technology
References show all
Comments are now closed.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: security, cloud computing
Latest Blog Posts
  • Software Defined Protection - The Enterprise Security Blueprint
    In a world with high-demanding IT infrastructures and networks, where perimeters are no longer well defined and where threats grow more intelligent every day, we need to define the right way to protect enterprises in the ever-changing threat landscape. Download today to define your security blueprint.
    Learn more »
  • Simple, Proven, Tranformative
    A cheat Sheet for Google Apps for Business
    Learn more »
  • Avoiding Common Pitfalls of Evaluating and Implementing DCIM Solutions
    While many who invest in Data Centre Infrastructure Management (DCIM) software benefit greatly, some do not. Research has revealed a number of pitfalls that end users should avoid when evaluating and implementing DCIM solutions. Choosing an inappropriate solution, relying on inadequate processes, and a lack of commitment / ownership / knowledge can each undermine a chosen toolset’s ability to deliver the value it was designed to provide. This paper describes these common pitfalls and provides practical guidance on how to avoid them.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Salary Calculator

Supplied by

View the full Peoplebank ICT Salary & Employment Index