Abstract: |
Nowadays, most service providers adopt Cloud Computing technology. Moving to Cloud creates new risks and challenges. The Cloud era is to outsource our services to Cloud Service Provider (CSP). However, we have to develop a strong governance framework to review the service level, to manage risk effectively and to certify that our critical information is secure. In this paper, we develop an innovative governance model. It is based on the theoretical Guo, Z., Song, M. and Song, J governance model for Cloud computing. We distribute Cloud Control Matrix (CCM) on the Guo’s model categories. This turns the theoretical Guo’s model to a practical model. Governance model alone will not allow us to bridge the gap between control requirements, technical issues and business risks. As a result, we introduce a new Cloud governance framework using the processes on the new Cloud governance model. |