Overall, you need to ensure that all the right people are involved, and everyone’s expectations are set regarding who’s responsible for what. Speaking of contracts and SLAs, customer service (or lack thereof) is another huge consideration for cloud computing. I have seen numerous cloud service gaffes that greatly affected me and my business. Granted, I have a tiny shop, but I could only imagine if the same thing happened in businesses with a few dozen — maybe even a few hundred — employees. I would be willing to bet that some heads would roll.
Above and beyond these issues you will experience when dealing with cloud providers, you are still going to need someone internal to your business who is responsible for managing everything on a daily basis. When it comes to IT, nothing is completely hands-off, not even with cloud computing.
What I’m trying to say is, think for yourself when it comes to the cloud. Don’t fall for the fast-talkers and marketing slicks. If there has ever been a great example of “talk is cheap” in IT, it is with the cloud, so buyer beware. Do your due diligence before going down this path. You must — it is just too risky otherwise.
Kevin Beaver is an information security consultant, expert witness, author and speaker with Principle Logic LLC. With more than 21 years experience, he specializes in performing independent information security assessments. He has authored eight books on information security including “Hacking For Dummies.” He is also the creator of the Security On Wheels information security audio books and blog. Contact him at www.principlelogic.com and follow him on Twitter at @kevinbeaver.