Opinions vary on whether cloud databases are more or less secure than in house hosted databases Some experts claim that cloud databases from reputable vendors such as Microsoft, Amazon, and Oracle are far more secure than in house hosted ones Others claim that the risk of mismanagement by a cloud vendor is too high organizations should store critical and confidential data only in house Take a position on this issue by answering three of the following questions Search the Internet for ISO 27001 Explain the purpose of this standard Does compliance with ISO 27001 mean that a data center is secure Does it mean that no security threat against compliant data centers will be successful What does it mean Search the Internet for evidence that Microsoft Azure complies with ISO 27001 Summarize your findings Search the Internet for evidence that Amazon's EC2 complies with ISO 27001 Summarize your findings SAS 70 is an auditing standard that provides guidance for an auditor issuing a report about internal controls implemented by a cloud services provider To assess the adequacy of data center controls, it is necessary to read and analyze the report that was prepared in accordance with SAS 70 Search the Internet for evidence that Microsoft's auditors have issued a report in accordance with SAS 70 Summarize your findings Search the Internet for evidence that Amazon's auditors have issued a report in accordance with SAS 70 Summarize your findings Compare and contrast your answers to questions 3 4 and 5 6 Does your comparison cause you to believe that there are significant differences with regard to security and control between Azure and EC2 Many small businesses operate with local servers running in broom closets or the like Explain what using a cloud vendor that is compliant with these standards and statements means to such companies Suppose a publicly traded large organization operates its own Web farm and has certifications indicating that it has complied with ISO 27001 and has issued a statement of controls in accordance with SAS 70 that indicates controls are at least adequate Is there any reason to believe that the organization's data assets on that Web farm are more or less secure than they would be if stored in Azure or EC2 Explain your answer Based on your answers to these questions, create a general statement as to the desirability, considering only data security, of storing data on Azure and EC2 as compared with storing it on servers managed in house

The Answer is in the image, click to view ...

Question: Opinions vary on whether cloud databases are more or less secure than in-house hosted databases. Some experts claim that cloud databases from reputable vendors such

Opinions vary on whether cloud databases are more or less secure than in-house hosted databases. Some experts claim that cloud databases from reputable vendors such as Microsoft, Amazon, and Oracle are far more secure than in-house hosted ones. Others claim that the risk of mismanagement by a cloud vendor is too high; organizations should store critical and confidential data only in-house.

Take a position on this issue by answering three of the following questions:

Search the Internet for ISO 27001. Explain the purpose of this standard.
Does compliance with ISO 27001 mean that a data center is secure? Does it mean that no security threat against compliant data centers will be successful? What does it mean?
Search the Internet for evidence that Microsoft Azure complies with ISO 27001. Summarize your findings.
Search the Internet for evidence that Amazon's EC2 complies with ISO 27001. Summarize your findings.
SAS 70 is an auditing standard that provides guidance for an auditor issuing a report about internal controls implemented by a cloud services provider. To assess the adequacy of data center controls, it is necessary to read and analyze the report that was prepared in accordance with SAS 70. Search the Internet for evidence that Microsoft's auditors have issued a report in accordance with SAS 70. Summarize your findings.
Search the Internet for evidence that Amazon's auditors have issued a report in accordance with SAS 70. Summarize your findings.
Compare and contrast your answers to questions 3/4 and 5/6. Does your comparison cause you to believe that there are significant differences with regard to security and control between Azure and EC2?
Many small businesses operate with local servers running in broom closets or the like. Explain what using a cloud vendor that is compliant with these standards and statements means to such companies.
Suppose a publicly traded large organization operates its own Web farm and has certifications indicating that it has complied with ISO 27001 and has issued a statement of controls in accordance with SAS 70 that indicates controls are at least adequate. Is there any reason to believe that the organization's data assets on that Web farm are more or less secure than they would be if stored in Azure or EC2? Explain your answer.
Based on your answers to these questions, create a general statement as to the desirability, considering only data security, of storing data on Azure and EC2 as compared with storing it on servers managed in-house.

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related General Management Questions!

Minimum of 100 word per question; APA format with reference. Opinions vary on whether cloud databases are more or less secure than in-house hosted databases. Some experts claim that cloud databases...

Group Collaboration Project: ISO 27001 - Ethics and Privacy Read the following material, to answer the following questions. APA format with title page and references must be included on title page)....

Hi this is the last multiple choice exam I have and this one only covers 3 chapters so I think it might be shorter Core Concepts of Accounting Information Systems, Canadian Edition Chapter 13-1...

Can you write an essay? CASE: SM-219 DATE: 02/06/14 BASWARE IN 2013: TRANSITION TO SOFTWARE AS A SERVICE The technology transition is a complicated and difficult task, but the end is in sight....

The next three question use data from the BMC 3/31/2013 10-K, which can be viewed by clicking here. You are doing a Comparable Companies analysis for BMC. After the Company issued its 10-K, the...

Hi, I'm having an issue with this Simnet project and I was wondering if anyone could help me. There is only one issue: Step 3a, in the instruction pdf that I have attached. When my project is graded...

Bookmark A hospital outpatient clinic performs four types of operations. The profit per operation, as well as the minutes of X-ray time and laboratory time used, are given. The clinic has 500 private...

What is marketing, and what is advertising's role in the marketing process?

Given Chin's concerns, the most appropriate definition of value for Thunder is: , A . intrinsic value. B . investment value. C . fair market value. The least likely factor that would be a source of...

Read the articles on journaling and review the template provided. Identify what approach, to journaling, in the articles you found useful and why. Post to the discussion forum that you have reviewed...