No. 1 Story
HP job cuts loom for Australian employees
A number of Australian employees of Hewlett-Packard are facing the loss of their jobs as the global computer giant looks to slash its worldwide workforce by up to 30,000.
read moreMore From
PCI and the Cloud - are they oil and water?
David Heath
Monday, 14 November 2011 15:32
Page 1 of 2
Sometimes it seems as though we finally achieve PCI compliance only to have 'management' change the landscape and throw the 'cloud' curveball at us. Will PCI and clouds mix or are they oil and water?
"Great, we can rest a little easy until the next audit," says the CSO.
Next thing he hears is that the Board and the CIO have decided to make his sunny day exceedingly cloudy.
"We're going to outsource our back-end systems to a cloud provider; we're looking to see who's cheapest."
According to leading Australian specialist security information consultancy Pure Hacking, The challenges of transparency and independent verification of compliance standards are two major issues which organisations need to address prior to moving credit card storage and transaction facilities to a public cloud. They suggest that while the costs of daily operations might well be best reduced by sending them into the cloud, there is little but heartache for any plan to do similar for card processing.
"Solely relying on public cloud computing systems for processing credit card information and transactions is literally a game of probability and risk. In the end the likelihood of an attack against a public cloud that holds such high value information is extremely probable. The security posture of your public cloud vendor against such attacks is key to your ability to protect your client's data privacy and business functionality," said Ty Miller, CTO, Pure Hacking.
See the next page for some suggestions on considering whether or not to mix your PCI with the cloud.
LATEST - CLOUD COMPUTING
- Wine company puts disaster recovery in cloud with Indicium
- Healthcare industry gravitating to the cloud
- Xero boosts sales team with new chief
- Autotask opens in ANZ to meet 'growing' market demand
- APAC public sector cloud deployment not so straight forward: report
- Super A-Mart consolidates with Brennan IT contract extension
- Equinix accelerates $50m Sydney data centre expansion
- Aussie companies look offshore for cloud services: report
- Brennan IT selects Equinix as data centre partner
- Netgear resellers to offer cloud backup option for ReadyNAS
You think you have a disaster recovery plan?
Think again. Most businesses only have PART of a DR plan - and this spells business disaster in the event of an IT disaster.
Download The Seven Sins of Disaster Recovery White Paper now and find out how you can prevent this happening to you.
