Welcome!

Cloud Security Authors: Yeshim Deniz, Liz McMillan, Elizabeth White, Pat Romanski, Zakia Bouachraoui

Related Topics: Government Cloud, Microservices Expo, Containers Expo Blog, Cognitive Computing , Agile Computing, @CloudExpo, Cloud Security

Government Cloud: Blog Feed Post

Cloud Archiving and Compliance

Clients like governments and the finance industry have extensive requirements for archiving and e-discovery

Our Cloud Archiving and Compliance best practices will define a maturity model for this hugely important segment within the industry.

It will also produce a best practices white paper, tailored to meet the needs of the NIST Business Use Case that defines the specific requirements for this functionality,  the FAA E-Discovery scenario (11-page PDF).

It will also describe a response to the general best practices defined in the recent CIO.gov document: Best practices for ITaaS, which also describes eDiscovery requirements. Download the 44-page PDF here.

Cloud Archiving Managed Services
This is such a hugely important area for Cloud Providers to develop new services because of the double impact it represents.

First there is the simple facet of the business opportunity. Clients like governments and the finance industry have extensive requirements for archiving and e-discovery.

Secondly and the accelerating factor is that the biggest hold up to Cloud adoption is the lack of maturity in this area. Typically the fears all centre on issues like data residency, where is the data hosted, and what protections are in place to ensure this data is not tampered with and so on.

These are requirements that archiving solutions deal with straight off the bat.

The Gartner Magic Quadrant places vendors like HP (Autonomy), IBM and Symantec as the leaders in this space, but this is a focus on the overall broad category of enterprise archiving, meaning it includes traditional on-site systems too.

Where the real challenge and opportunity is presented is how these types of capabilities can be absorbed into Cloud hosting environments, challenges that are well described in this white paper from another of the vendors Proofpoint: Cloud Computing and eDiscovery.

They describe critical points like:

Cloud computing makes IT operations fast and nimble, but it doesn’t necessarily make ESI easier to discover or legal holds easier to enforce. On the contrary, cloud computing can make legal holds and ESI searches more complex, time-consuming, and difficult. The vast majority of cloud providers would be unable to satisfy the stringent security, privacy, and data access requirements of corporate counsel and other stakeholders responsible for managing legal risk exposure.

They are exactly right on this, which is a blunt explanation of why Cloud adoption is still very low despite the huge hype. There`s your answer.

Also Proofpoint describe the solution, and the associated opportunity for Cloud Providers:

Enterprise IT departments need guidance for deploying eDiscovery applications and for crafting Service Level Agreements (SLAs) with cloud service providers, so that new cloud computing initiatives don’t undermine the enterprise’s investments in eDiscovery.

If Cloud Providers do this they will not only open up a specific product segment, Cloud Archiving, but they will also alleviate Cloud adoption fears in general and open the floodgates for broader adoption of all Cloud apps.

This is why, in my opinion, Cloud Archiving is the single most important product area for Cloud Providers to invest in.

Cloud Archiving – Service specifications

For a taste of these market opportunities we can review a number of related industry initiatives.

Managing Government Records - President Obama recently declared the ‘Managing Government Records‘ initiative , to better use Cloud technologies to perform Information Management and achieve Open Government. Canada also recently announced a similar initiative, to build a ‘GC Docs’ portal that publishes all of their records.

The NIST Business Use Case details the required service specifications, begun with this high level introduction and overview:

“The Federal Aviation Administration (FAA) is examining how to implement cloud-based e-discovery and Freedom of Information Act (FOIA) processes for email. The system must be able to perform discovery in both its in-house email implementation (Lotus Notes) but also in cloud-based email systems. The system will also be used to manage content for compliance purposes, and will serve as an archive of FAA messaging content.

The long-run goal is to support four primary functions: e-discovery, electronic records management, FOIA, and privacy. These four processes have similar needs and capabilities, including searching business applications, document repositories, email (including calendar, contacts, tasks, etc.) and instant messages, and distributed storage (both internal and external) for electronically stored information (ESI) meeting defined criteria.

The focus of this business use case is the processes and systems required to respond to e-discovery and FOIA requests as they pertain to email message data and other supporting data such as calendar entries, tasks, attachments, etc. that are produced and processed by the FAA’s traditional and cloud email messaging systems.”

Our Cloud Archiving best practices program will detail how Cloud Providers can develop products in this area to meet these requirements and opportunities.

Read the original blog entry...

More Stories By Cloud Best Practices Network

The Cloud Best Practices Network is an expert community of leading Cloud pioneers. Follow our best practice blogs at http://CloudBestPractices.net

IoT & Smart Cities Stories
Cloud-enabled transformation has evolved from cost saving measure to business innovation strategy -- one that combines the cloud with cognitive capabilities to drive market disruption. Learn how you can achieve the insight and agility you need to gain a competitive advantage. Industry-acclaimed CTO and cloud expert, Shankar Kalyana presents. Only the most exceptional IBMers are appointed with the rare distinction of IBM Fellow, the highest technical honor in the company. Shankar has also receive...
Digital Transformation and Disruption, Amazon Style - What You Can Learn. Chris Kocher is a co-founder of Grey Heron, a management and strategic marketing consulting firm. He has 25+ years in both strategic and hands-on operating experience helping executives and investors build revenues and shareholder value. He has consulted with over 130 companies on innovating with new business models, product strategies and monetization. Chris has held management positions at HP and Symantec in addition to ...
"MobiDev is a Ukraine-based software development company. We do mobile development, and we're specialists in that. But we do full stack software development for entrepreneurs, for emerging companies, and for enterprise ventures," explained Alan Winters, U.S. Head of Business Development at MobiDev, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
Cloud computing delivers on-demand resources that provide businesses with flexibility and cost-savings. The challenge in moving workloads to the cloud has been the cost and complexity of ensuring the initial and ongoing security and regulatory (PCI, HIPAA, FFIEC) compliance across private and public clouds. Manual security compliance is slow, prone to human error, and represents over 50% of the cost of managing cloud applications. Determining how to automate cloud security compliance is critical...
Enterprises have taken advantage of IoT to achieve important revenue and cost advantages. What is less apparent is how incumbent enterprises operating at scale have, following success with IoT, built analytic, operations management and software development capabilities - ranging from autonomous vehicles to manageable robotics installations. They have embraced these capabilities as if they were Silicon Valley startups.
Recently, REAN Cloud built a digital concierge for a North Carolina hospital that had observed that most patient call button questions were repetitive. In addition, the paper-based process used to measure patient health metrics was laborious, not in real-time and sometimes error-prone. In their session at 21st Cloud Expo, Sean Finnerty, Executive Director, Practice Lead, Health Care & Life Science at REAN Cloud, and Dr. S.P.T. Krishnan, Principal Architect at REAN Cloud, discussed how they built...
When talking IoT we often focus on the devices, the sensors, the hardware itself. The new smart appliances, the new smart or self-driving cars (which are amalgamations of many ‘things'). When we are looking at the world of IoT, we should take a step back, look at the big picture. What value are these devices providing. IoT is not about the devices, its about the data consumed and generated. The devices are tools, mechanisms, conduits. This paper discusses the considerations when dealing with the...
Bill Schmarzo, author of "Big Data: Understanding How Data Powers Big Business" and "Big Data MBA: Driving Business Strategies with Data Science," is responsible for setting the strategy and defining the Big Data service offerings and capabilities for EMC Global Services Big Data Practice. As the CTO for the Big Data Practice, he is responsible for working with organizations to help them identify where and how to start their big data journeys. He's written several white papers, is an avid blogge...
Business professionals no longer wonder if they'll migrate to the cloud; it's now a matter of when. The cloud environment has proved to be a major force in transitioning to an agile business model that enables quick decisions and fast implementation that solidify customer relationships. And when the cloud is combined with the power of cognitive computing, it drives innovation and transformation that achieves astounding competitive advantage.
Machine learning has taken residence at our cities' cores and now we can finally have "smart cities." Cities are a collection of buildings made to provide the structure and safety necessary for people to function, create and survive. Buildings are a pool of ever-changing performance data from large automated systems such as heating and cooling to the people that live and work within them. Through machine learning, buildings can optimize performance, reduce costs, and improve occupant comfort by ...