Paul Douthit

Three tests for assessing legal and regulatory compliance for cloud providers

March 23 2012 @11:07 AM
By: Paul Douthit
Comment
Share

In its Guidelines on Security and Privacy in Public Cloud Computing, Special Publication 800-144, the National Institute of Standards and Technology (NIST) notes that organizations have a responsibility to “operate in agreement with established laws, regulations, standards, and specifications.” More...
Brian Cann

Cloud enables a risk-free VDI proof of concept

February 7 2012 @9:22 AM
By: Brian Cann
Comment
Share

This past summer we published a white paper and blog post on Virtual Desktop Infrastructure: Essential steps to a long-term ROI. In those communications, we talked about how cloud technology has changed the conversation around the viability of VDI. Prior to cloud, the ramp-up costs to demonstrate the ROI of VDI were a barrier for most CIOs. However, the shift to cloud computing has made this solution a viable option. More...
Paul Douthit

The need for clear cloud security assessment boundaries

January 30 2012 @10:35 AM
By: Paul Douthit
Comment
Share

As a Cloud Service Provider (CSP) on GSA’s Infrastructure as a Service (IaaS) BPA, CGI has learned we must help our customers understand the extent of the security features they inherit from our certified IaaS services. GSA appropriately made these boundary distinctions a key issue during the risk assessment process. Since different CSPs have chosen different boundaries, it is very important that customers be aware of the extent of the security provided with their IaaS.   More...

Pages