Cloud services innovation, deployment and consumption are proliferating at a runaway rate today, for all the good reasons of opex cost management model, backup and storage, business continuity, scalability, flexibility et al. Then there is FinTech, IOT, mobile apps, all going through the cloud too.
Nonetheless, there are security and governance concerns too, primarily regarding data and availability, given that cloud is an outsourced model and the user loses visibility and control.
Hence it is paramount to consider and comply with nationally and internationally established security and trust frameworks and certifications, such as from ISO, CSA and also some local ones from SGX-MAS-ABS and IMDA, as at least a next-best assurance and trust reference, that certain processes, policies and methodologies are in place to ensure the cyber security of the cloud services. We also look at a sampling of statements of assurance from some big cloud providers like Microsoft, Amazon and SingTel.
Market Strategy Director APAC of Cloud Security Alliance