Security in the Cloud - CIPS and Events/CIPS Cloud Control... · • Project members • Business...

Security in the Cloud Cloud Control 5 September 2013

The Procurement View

Carol-Anne Stonefield

Technology Procurement Manager

Direct Line Group

Topics for Today

• Why opt for cloud?

• Understanding the Risks

• Proliferation and Control

• Data and Security

• Disaster Recovery and Back-up

• Standardisation

• Capacity and Integration

• Term, Exit and Lock-in

• Reliability and Remedies

• Costs

• Conclusion

Why opt for cloud?

• Speed

• Flexibility

• Easy

• During periods of change/freeze

• Avoids direct infrastructure investment

• Bypass IT

Understanding the Risks

Understand what you are putting in the cloud!

Proliferation and Control

• How many cloud providers do you have? Are you sure?

• Duplication

• Who has your data?

• Due diligence

• Management and administration

• Tactical (long-term) solutions

CONTROL!

Data and Security

• How is the data stored?

• Who is storing the data?

• What type of data is stored?

• Where is the data stored?

• DPA, PCI and your organisation’s responsibilities

• Data retention

• Security testing and audits

• Reputational damage

Disaster Recovery and Back-up

• Provider’s DR processes

• Impact of a DR event

• DR recovery times

• DR location

• Back-up frequency obligations

Standardisation

One size does fit all!

Capacity and Integration

• Capacity

• Understand the limits

• Capacity overload – what happens next?

• Integration

• Is it really plug and play?

• Compatibility

• Upgrades

Term, Exit and Lock-in

• Choosing the right term

• Understanding the supplier’s investments

• Migration of data

• Return of data

• Exit obligations

Reliability and Remedies

• Reliability and availability

• Calculating availability

• Reporting

• Service credits

• Regulatory implications

• Reputational risk

• Understanding the complete package

• Volumes, users, capacity and set-up

• Committed volumes

• Flexible options

• Volume/capacity increases

• Reaching maximum capacity or volumes

• Term commitments

• Renewal fees

Advice from within

You’re not alone!

• IT Security

• Information specialists

• Project members

• Business users

• CIPS papers

Conclusion

Cloud solutions will continue to grow and evolve

Understand the risks

Go in with your eyes open!

The Legal View

Jason McQuillen

Principal at radiant.law

+44 751 358 5596

jason.mcquillen@radiantlaw.com

Encryption

Penetration testing

The art of the possible

Alex Hamilton

Principal at radiant.law

+44 7734 908 207

alex.hamilton@radiantlaw.com

You can have any colour….

…. as long as it’s black

Private Cloud Public Cloud

£ Large/ High Leverage

£ Small/ Low Leverage

IT Outsourcing Agreement - Negotiable

Customer paper

IT Services Agreement - Negotiable

Supplier paper

Customer paper

Supplier paper

Risk analysis Supplier paper

Customer paper

Negotiable Supplier paper

Supplier paper

Risk analysis Supplier paper

Supplier Customer

standardisation policy requirements

Supplier Customer

margins total cost of ownership

Supplier Customer

systemic exposure material penalties

Supplier Customer

guaranteed revenue flexibility

Supplier Customer

ability to evolve certainty

Supplier Customer

ability to evolve certainty

speed to contract fitness for purpose

Panel Discussion

• Khurram Ijaz

• Carol-Anne Stonefield

• Alex Hamilton

• Anna Cook

www.radiantlaw.com

Security in the Cloud - CIPS and Events/CIPS Cloud Control... · • Project members • Business...

Documents

CIPS at CTAR

Lay's cips

Detailed Statement of Work - Evolve IP | Cloud … · Provide all information requested by Evolve IP Project Management in a complete and timely fashion including, but ... Detailed

CIPS · qualifications assessed against a GLOBAL standard. • Corporate Ethical Procurement • Sustainable Procurement Review • CIPS Sustainability Index • CIPS Risk Index •

CIPS CelebratIng 80 yearS CIPS/CIPS History combined1.… · launch of the Mars Bar, the ... celebrating 80 years of cips w ho, ... – Lord McGowan, who was chairman of ICI. At the

Evolve your Cloud Strategy to meet Tomorrow's Digital Business Needs- Darryl McKinnon

Certified International Property Specialist Designation (CIPS)...Apr 10, 2019 · Certified International Property Specialist Designation (CIPS) To earn your CIPS designation, you

Evolve - Staying relevant at cloud speed

CIPS 1st Lecture

CIPS Level 2 Data - |LASP|CU-Boulderlasp.colorado.edu/aim/cips/data/repository/docs/cips_level2.pdf · CIPS Level 2 Data: Orbit-by-Orbit Cloud Parameters Last Updated 23 July 2014

Kathleen Wilson - Evolve Cloud Operations and Enable Agile with Modern Service Management

Home Page | CIPS

CIPS Annual Report and Accounts 2017 | CIPS...1017938), CIPS operates in accordance with its Charter and Bye-laws and within the provisions of the Charities Act 2011. CIPS is a not

CIPS BROCHURE

Lou's cips tips

YOUR GUIDE TO CIPS QUALIFICATIONS 4 5 QualsGuide_UK.pdf · 6 YOUR GUIDE TO CIPS QUALIFICATIONS CIPS awards and membership grades The following table lists the names of the CIPS awards

CIPS Course Brochure Brochure 2019 to... · CIPS Course Brochure September 2019 to September 2020 CIPS – CENTRE OF EXCELLENCE Established 1986 Providing Levels 2 – 6 of the CIPS

Become a CIPS Designee in 5 Easy Stepsrebac.net/Teach/CIPS/CIPS_CPR_Docs/2017-NAR-CIPS-Checklist-NO… · Become a CIPS Designee in 5 Easy Steps For International REALTORS® (excluding

CIPS CompSEC SIG

Category management (cips)