ISACA published six guidelines for effective cloud computing

Hong Kong, February 28, 2012--cloud computing is a common and significant benefit. However, most enterprises fail to understand that the decision power of information technology is transferred from technology professionals to the crisis brought about by the leadership of the corporate team. Ignoring the monitoring and governance of cloud computing decisions can pose a significant risk to the enterprise, not only greatly damaging the benefits of adopting cloud computing, but it may also cause serious problems for the business.
&http://www.aliyun.com/zixun/aggregation/37954.html >nbsp;
only through proper governance and management can cloud computing maximize the enterprise's potential. When cloud computing strategies deviate from the information technology services provided within the enterprise, or the traditional outsourcing projects, the potential pressure points often begin to emerge. To assist in the management of such pressure points, the global non-profit information technology organization ISACA has published the latest free guidelines entitled "Principles for application and functional guidelines for cloud computing" (Guiding principles for Cloud Computing Adoption and uses), There are six major cloud computing principles:
&NBSP
1.      The strategic startup principle: Positioning cloud computing as a strategic start-up, not an outsourced engineering or technology platform.
2.      Cost/Benefit principle: Fully understand the cost of cloud computing and compare the cost of business solutions using other technology platforms to assess the benefits of using cloud computing.
3.      Enterprise Risk principles: Manage cloud applications and functions in an enterprise risk management perspective. The
4.      Competency principle: Fully integrate the performance and internal resources provided by cloud vendors to provide complete technical support and delivery solutions. The
5.      Accountability principle: clearly define the internal and supplier responsibilities of the enterprise to implement the accountability system.
6.      The principle of mutual trust: building Trust as an important part of the cloud computing solution to build confidence in all business processes that rely on cloud computing.

"Cloud computing is a unique opportunity for companies," said Software Ramses, a member of the ISACA Guidelines and Code Committee and Quest Gallego Security promotion and strategy expert, who holds the CISM and corporate Information Technology Governance Certification (CGEIT) qualifications. For small and medium-sized enterprises, the emergence of cloud computing has changed the market rules, reflecting the technology infrastructure is no longer in the market to break out of the conditions. These cloud principles will allow companies to experience the value of cloud computing and help ensure that both internal and external users can rely on cloud solutions. 」

ISACA's "Principles of application and function guidelines for cloud computing" can be downloaded free of charge in Www.isaca.org/cloud-principles. Other cloud computing resources, including the "cloud computing information Technology monitoring target", are now available in Www.isaca.org/cloud.




Introduction to the International Information Systems Audit Association
The International Information Systems Audit Association (isaca®, Web site: www.isaca.org) is a global leader in more than 160 countries with knowledge, certification, community, advocacy and education training on information systems standards compliance and security, corporate information technology governance, and it-related risks and compliance. , with a total of more than 95,000 people. Founded in 1969, Isaca® is a non-profit independent organization. In addition to hosting international conferences, the publication of the International Information Systems Audit Journal (isaca®journal) and the development of internationally recognized auditing and monitoring standards for information systems to assist its members in creating a trustworthy and valued information system. At the same time, in order to promote and prove each person's information technology and knowledge, ISACA launched various globally recognized professional certification, such as: Registration Information System Auditor (cisa®), Registered Information Security Manager (cism®), Enterprise Information Technology Governance certification (cgeit® and risk and Information Systems Monitoring certification (CRISCTM).

The International Information Systems Audit Association (cobit®) is developing and continuing to update the information technology professionals and business leaders on their role in IT governance, particularly in the areas of information systems standards compliance, security, risk architecture and control, to enhance business value.

(Responsible editor: The good of the Legacy)