https://www.americancityandcounty.com/wp-content/themes/acc_child/assets/images/logo/footer-logo.png
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcast
  • Resources & Events
    • Back
    • Resources
    • Webinars
    • White Papers
    • IWCE 2022
    • How to Contribute
    • Municipal Cost Index – Archive
    • Equipment Watch Page
    • American City & County Awards
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Privacy Statement
    • Terms of Service
American City and County
  • NEWSLETTER
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcasts
    • Latest videos
  • Resources/Events
    • Back
    • Webinars
    • White Papers/eBooks
    • IWCE 2022
    • How to Contribute
    • American City & County Awards
    • Municipal Cost Index
    • Equipment Watch Page
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Cookie Policy
    • Privacy Stament
    • Terms of Service
  • newsletter
  • Administration
  • Economy & Finance
  • Procurement
  • Public Safety
  • Public Works & Utilities
  • Smart Cities & Technology
  • Magazine
acc.com

Smart Cities & Technology


Article

Security, compliance, and the future

Security, compliance, and the future

In the final installment of this five-part series, Rod Trent discusses security and compliance issues related to cloud computing, and the future of this industry.
  • Written by By Rod Trent
  • 28th July 2014

This article is the last in our 5 part series on using the Cloud in your department or agency. Through the series  we’ve gone through Cloud basics to bring you to a better understanding about what the Cloud is, what value it providesand the steps to take to ensure a successful implementation.

But, there’s more. Based on the original Cloud trends and survey results, many of you still have questions over security and compliance in a Cloud-friendly world, so  let’s take some time to address those.

Is this Cloud secure? Does the Cloud meet strict compliance regulations? Read on.

As Secure as You Are

One of the big misconceptions I briefly covered in Part 3 is about Cloud security. In that article, I talked about how it’s important to take your Cloud provider choice to task to prove their specific Cloud offering is secure. But, even more than that,  you also must understand general computing security, so when the vendor starts talking HTTPs, SSL, TLS, 2-factor authentication, and other electronic communication mediums you’re not apt to turn blank-faced, give timed nods, and daydream about the ride home.

In essence, the Cloud and Cloud provider you choose can only be as secure as you make them, based on your own knowledge. Many organizations have honed environment security over the years, but the Cloud brings new opportunities for security failure. Invest the time to learn these new security paradigms.

The best spot to get started is to visit the Cloud Security Alliance web site:

Cloud Security Alliance (CSA) – The Cloud Security Alliance (CSA) is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing.

Compliance

One of the key compliance issues organizations will face is due to the flexibility and value of the Cloud. The Cloud allows an organization to move data, applications, and operations to the Cloud provider. But, in doing so, many times where that data actually ends up is unknown. Data moved from on-premises to the Cloud could actually end up being stored in a datacenter across the world. Many laws demand that data shall not cross borders or be shared with other environments in a different national area.

Fortunately, compliance for data moving and storage have improved as the Cloud has evolved. Companies like Microsoft understand these compliance issues and have developed policies to solve it where you get to choose and control where data resides geographically.

A couple other important challenges come from the Payment Card Industry Data Security Standards (PCI DSS) and the Health Insurance Portability and Accountability Act. These sector-specific standards and laws present additional challenges for agencies.

Fortunately, for these situations, the STAR registry was created by the Cloud Security Alliance. The STAR registry allows cloud service providers to provide customers with visibility into their security, privacy and compliance commitments and capabilities. Customers can sift through the registry to locate Cloud providers that meet their specific Cloud compliance concerns.

Download this whitepaper to learn more: Compliance in the Cloud

What’s Next?

The Cloud is not perfect, but it is ever improving. We’ve come a long way in a very short period of time, thanks to those providers who have invested considerable resources into helping the solution to evolve. And, it continues to evolve at a rapid pace. Just 3 years ago, this 5-part article series would have looked and read much differently. I would have told you, flat-out, DO NOT consider the Cloud because the detriments significantly outweighed the value. 3 years ago we were in the baby stage, but today, I’d say we’re just coming out of toddler and heading to adolescence. The legs are strong and sturdy, and the body is full of excitement, energy, and substance.

Vendors like Microsoft will always offer customers a choice and not force you to go all-Cloud or nothing. Hopefully, you have a better understanding of what the Cloud is and appreciate the value that it can bring to your organization. Hopefully, I’ve helped dispel the biggest misconceptions and turned your fear into admiration. We live in exciting times with the potential for great things.

I wish you great success.

Rod Trent is the IT Community Manager for Windows IT Pro and myITforum.com, both sister brands of American City & County.

_____________

To get connected and stay up-to-date with similar content from American City & County:
Like us on Facebook

Follow us on Twitter
Watch us on Youtube

 

Tags: Smart Cities & Technology Article

Most Recent


  • Amid digitization of public infrastructure, cybersecurity is increasingly a challenge
    The digitization of public infrastructure is a double-edged sword: While technology can streamline workflows and make systems run more efficiently, it’s also vulnerable to digital threats.  “The integration of new technologies into the public transit industry has resulted in improved service offerings to customers. But while these new services provide important information and conveniences to […]
  • security
    Note to cities: Watch out for security gaps and hidden expenses as you acquire new IT systems
    Government purchasers need to be aware of the security concerns new technology can introduce into a network or system, says Jeffrey Jones, a national security and global trade attorney with the firm of Lowenstein Sandler LLP. “State and local governments are soft targets for ransomware actors and cyberattacks because smaller government entities often lack the […]
  • $52B semiconductor investment intended to rejuvenate American manufacturing
    Three decades ago, American manufacturing dominated the semiconductor industry, producing about 40 percent of the global supply annually. But over time, companies shipped business overseas looking to cut costs, and today, the nation produces only 10 percent of all semiconductors. It’s something the Biden Administration is trying to change through CHIPS and Science Act. “There […]
  • Chattanooga, Tenn.
    Capitalizing on hybrid work, these 10 cities are ready to take advantage
    Hybrid work is an accelerating trend that’s becoming the norm as attitudes rapidly change. And amid this nationwide shift to work-from-home setups, local governments are moving quickly to capitalize on the emerging opportunities that come with a workforce that’s not physically tied to any particular office building. For administrators seeking to entice remote workers to […]

Leave a comment Cancel reply

-or-

Log in with your American City and County account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • North Texas alliance partners with Marketplace.city on smart government solutions
  • Harris County deploys next-generation security in 150 public buildings
  • Prioritizing rapid restore leads to stronger ransomware attack recovery
  • Today’s infrastructure needs greater than roads and bridges - It’s time to face our digital connectiveness

White papers


Modern American Perspectives on Law Enforcement

14th July 2022

Reimagine the Employee Experience

12th July 2022

How to Assemble a Rockstar Website Redesign Steering Committee

7th June 2022
view all

Events


PODCAST


Young Leaders Episode 4 – Cyril Jefferson – City Councilman, High Point, North Carolina

13th October 2020

Young Leaders Episode 3 – Shannon Hardin – City Council President, Columbus, Ohio

27th July 2020

Young Leaders Episode 2 – Christian Williams – Development Services Planner, Goodyear, Ariz.

1st July 2020
view all

Twitter


AmerCityCounty

Here are 12 of America’s most walkable cities with vacancies for renters dlvr.it/SWlBkd

16th August 2022
AmerCityCounty

Amid digitization of public infrastructure, cybersecurity is increasingly a challenge dlvr.it/SWh6Ww

15th August 2022
AmerCityCounty

Note to cities: Watch out for security gaps and hidden expenses as you acquire new IT systems dlvr.it/SWgth1

15th August 2022
AmerCityCounty

When spending federal stimulus dollars, local governments should consider long-term, community impact dlvr.it/SWXJWZ

12th August 2022
AmerCityCounty

In Nevada county, data underpins efforts to address climate change dlvr.it/SWTGHy

11th August 2022
AmerCityCounty

$52B semiconductor investment intended to rejuvenate American manufacturing dlvr.it/SWPqHQ

10th August 2022
AmerCityCounty

How capital improvement project prioritization helps secure infrastructure funding dlvr.it/SWLQB7

9th August 2022
AmerCityCounty

Climate bill lauded; predicted to reduce nation’s carbon foot print by 40% within decade dlvr.it/SWHGQL

8th August 2022

Newsletters

Sign up for American City & County’s newsletters to receive regular news and information updates about local governments.

Resale Insights Dashboard

The Resale Insights Dashboard provides model-level data for the entire used equipment market to help you save time and money.

Municipal Cost Index

Updated monthly since 1978, our exclusive Municipal Cost Index shows the effects of inflation on the cost of providing municipal services

Media Kit and Advertising

Want to reach our digital audience? Learn more here.

DISCOVER MORE FROM INFORMA TECH

  • IWCE’s Urgent Communications
  • IWCE Expo

WORKING WITH US

  • About Us
  • Contact Us

FOLLOW American City and County ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X