Sign in to search Gartner Research
More and more IT resources – including business-critical applications and highly sensitive data – are being moved into the cloud. The cloud delivery model offers important benefits in efficiency, scalability and economy, but it also presents an entirely new, and poorly understood, set of security risks.
Research VP and Gartner Fellow David Mitchell Smith goes beyond the cloud hype to address issues of security, compliance, and more.
7 June 2011
A growing number of cloud security frameworks will provide greater transparency and simplify risk assessment. 2011 is an important year for the introduction and initial experiments in best practices for using cloud risk assessment standards.
2 September 2010
Security needs to be addressed from the start as enterprises begin to make business use of public and private cloud computing. Gartner provides a set of research documents mapping the key security issues to different business approaches to securing cloud-computing services.
13 August 2010
As IT delivery shifts to take advantage of cloud-based computing services, enterprise security strategies will need to adapt. Gartner presents a model for matching the right security strategy for different business cases.
30 August 2010
Organizations that desire to leverage cloud computing are struggling to determine which applications and IT services are "cloud ready." Part of that determination involves assessing the availability and performance risks associated with hosting the application in the cloud.
24 September 2010
The marketing claims about the robustness of cloud computing are encouraging many customers to ignore vital continuity and recovery practices, leaving them dangerously exposed to service interruptions and data loss.
22 March 2011
Buyer interest in cloud solutions is increasing, however the cloud contracting model is nascent and still not standardized, with many risk elements that are unacceptable to enterprise buyers. This research reviews different types of contractual protection to ensure sustainable deals with sufficient risk mitigation.
6 April 2011
Secure e-mail and Web gateways delivered as cloud-based services are rapidly maturing. Organizations should carefully weigh the benefits of cloud-based delivery when renewing these solutions.
22 March 2011
HBGary's Gmail cloud e-mail was compromised by a stolen password -- but it was poor incident-response process that failed to protect vital data. Enterprises should focus on SLAs prior to choosing cloud services to assess risk.
17 March 2011
Customers require standard cloud security assessment criteria. However, one-size-fits-all checklists won't meet the need for effective, affordable, and flexible assessment criteria. This document will provide guidance on emerging industry assessment and audit frameworks for public cloud computing.
21 February 2011
Ongoing flux in "cloud" pricing market dynamics can determine whether or not a deal delivers expected value to an organization. This research can help sourcing and procurement executives negotiate and develop optimally-priced cloud services deals that deliver the flexibility and the value they need.
13 July 2009
Cloud computing technical and business models present special security challenges that must be addressed through new risk assessment and acquisition processes.