NewsOutsourcingInfrastructure

Global IT association ISACA launched a new book on implementing effective controls and governance for cloud computing called IT Control Objectives for Cloud Computing: Controls and Assurance in the Cloud.

The book advises how the use of cloud computing impact business processes, and the role of governance in effectively managing increasing risks; handling myriad regulations; and adapting effectively.

Proper governance is also crucial to ensure the continuity of critical business processes, which has now extended beyond the data center; communicate clear enterprise objectives internally and to third parties; and facilitate the continuity of IT knowledge, which is essential to sustain and grow the business, according to ISACA's book.

"To get the most benefit from their cloud initiatives, enterprises must develop a clear governance strategy and management plan that sets the direction and objectives for cloud computing and executes on the plan," said Phil Lageschulte, member of ISACA's knowledge board and leader of KPMG's global IT audit services.

"IT has historically been viewed as a cost center, but the cloud presents the opportunity to fully align it with the goals of the enterprise as a whole and add value to the organization," he said.

IT Control Objectives for Cloud Computing advises that enterprises must ask the following key questions for proper governance of cloud computing:

The book also outlines business case development, how standards and good practices assist with cloud governance, how to establish business goals for the cloud, risk considerations and responsibilities, and a cloud computing management audit/assurance program.

IT Control Objectives for Cloud Computing: Controls and Assurance in the Cloud is available in both print and e-book form.