Description
Mackita, M., Shin, S.-Y., & Choe, T.-Y. (2019). ERMOCTAVE: A Risk Management Framework for IT Systems Which Adopt Cloud Computing. Future Internet, 11(9), 195. Retrieved from
https://doi.org/10.3390/fi11090195
Puchley, T., & Toppi, C. (2018). ERM: Evolving From Risk Assessment to Strategic Risk Management. HFM (Healthcare Financial Management), 1–5.
After reading the articles this week, please answer the following two questions.
- What are some of the potential risks involved with cloud computing?
- Does the research and model in this article propose a viable solution to cloud-based risk management?
Reply:
1)With the knowledge of benefits, many of the companies were adopting cloud computing technology in moving the data to clouds. As there are no proper risk management processes directly for cloud computing, it illustrates numerous risks that are unidentified. In that unauthorized access to the customer data and business data is one of the potential risks involved with cloud computing (Fu & Liu, 2017). As cloud services of all kinds of organizations aggregate data from various sources, it pushes into the security risks where it will be a potential target for the attackers. They take it as a target and allows some inside threats by taking the control of data access. Compliance and legal risks are some of the risks that can be noticed with cloud computing. Transferring the data to the third party will not be protective which allows others to access the data. There is a chance to increase the threats for data confidentiality which is related to cloud computing.
There is a need of having some private cloud for an organization in order to manage their sensitive data. Lack of privacy is one of the barriers that could be seen in cloud computing. This service allows many of the users to access the data which limits privacy. Loss of IT controls and governance in the organization under using the cloud services will increase the risks for data interception in the method of authentication and in the process of transmission (Gao, 2018). Moreover, lack of standards regarding data control with incomplete concerning securities will bring the risks for the company where it fails in data security and privacy. Loss of control on the cloud providing services will surprise the users with their costing prices that make to lose the access of confidential data locally in a safe manner. Jurisdictional issues and lack of standardization will also raise some risks within the use of cloud computing. This article introduces the enterprise risk management method (ERMOCTAVE) with objectives and strategies to resolve cloud-based risks (Santos et al., 2017).
2) Cloud computing is a technology that is used for adopting programs with recognizing traditional risk management. Some potential risks are included in cloud computing required for IT services. The major risk is unauthorized access of customers and business data is part of reaching their goals. Breach in the organization is an easy process that increases capable of protecting their data. Cloud services will increase the values of the business model by determining a potential target. A third-party server is a process of hacking the data with accessing system and government policies (Church et al, 2020). An email server is a problem with maintaining the critical services that will increase risks in an organization.
Compliance and legal is lead to risks in an organization with regulates data security. This process is used for different types of industries to maintain data security regulations. But sometimes this process leads to a lack of control over data. Cloud services provided for increasing technologies with help of transferring the information. Protecting data with help of specific technologies among the control of services. Availability risks are provided for improving cloud services with maintaining internet access in business. cloud computing risks are a devastating breach in an organization (Samea, Azam et al., 2020). That increases risks are available in cloud services that increase associate legal information.
There are propose of viable solution that is important for developing cloud-based risk management. This process of a business model is required for improving risk
assessment
at management. The Decision-making process is evaluated for improving analyze with using machine learning techniques. Cloud service providers the aggregated risk in an organization. That is secure with help of developing a business model. There are associated methods that are adopting cloud computing to protect the information. The impact of
assessment
in cloud computing is provided for improving prototypes with increase decision making process (Yinghui Zhang et al., 2020). Data protection is related to develop the regulations and policies in an organization.
