Cloud Risk Assessment: Your risks clearly identified
Your organization has undoubtedly hosted one or more mission-critical systems with a cloud vendor, or you are currently undergoing a transformation to the cloud. Accommodating or migrating these systems, like any transformation, comes with risks. Depending on the degree of outsourcing, these risks can be very complex. To clearly map these risks and identify any areas for improvement, we can perform a Cloud Risk Assessment (CRA) with you.
What is a Cloud Risk Assessment (CRA)?
A Cloud Risk Assessment (CRA) is a comprehensive evaluation of the risks associated with the use of cloud computing. This assessment can be tailored specifically to the outsourcing model you are using, whether SaaS (Software as a Service), PaaS (Platform as a Service) or IaaS (Infrastructure as a Service). Our goal is to identify, evaluate and mitigate risks so that your organization can safely and efficiently use cloud solutions.
Our Approach: Cloud Control Matrix (CCM).
To conduct this assessment, we use the Cloud Control Matrix (CCM) framework of the Cloud Security Alliance (CSA).
This framework consists of as many as 197 internalcontrol objectives divided into 17 domains, including:
- Audit & Assurance.
- Application & Interface Security.
- Business Continuity Management.
- Data Security & Privacy.
- Logging and Monitoring.
- Identity & Access Management.
- Universal EndPoint Management.
The Cloud Controls Matrix (CCM) complies with the following standards and norms: ISO/IEC 27001/27002/27017/27018, CIS, AICPA, PCI-DSS, NIST and ISACA COBIT.
Why choose ARC People?
Our clients typically hire us on an interim basis, or in addition to their own team(co-sourcing). You can expect our experts to have extensive experience in performing Cloud Risk Assessments. They will be happy to help you identify potential risks. If required, we can also ensure that your cloud environment, with the help of correctly implemented measures, meets the highest security standards and that your data is protected against threats.
Learn more about Cloud Risk Assessment
As a specialist, ARC People has experience in various industries in pragmatically applying this framework and performing Cloud Security Assessments. If desired, we do this in collaboration with employee(s) of your organization, so that knowledge is also transferred. Want to know more? Feel free to contact us to discuss the possibilities.
