SlideShare a Scribd company logo

CIF Self Certification MSP Oct15

J
Jason Wyatt
1 of 2
Download to read offline
Cloud Industry Forum Self Certification Background The Cloud Industry Forum (CIF) is an independent trade membership body representing Managed Service Providers (MSPs) and technology companies, which aims to:  Champion and advocate the adoption of Cloud Services by businesses and individuals.  Raise industry standards and bring greater transparency and trust to doing business in the Cloud with its Code of Practice for MSPs.  Give end users the tools and information required in order to make informed business decisions about adoption of the Cloud. In June 2015, CIF surveyed 250 UK-based organisations. When asked about their biggest concerns during the decision-making process to move to the Cloud, 70 per cent cited data security and 61 per cent data privacy, both up from the 2014 figures of 61 per cent and 54 per cent respectively. There has been an even more marked increase in those worried about losing control/manageability of their IT systems; in 2014, just 24 per cent cited this as a concern, compared with 40 per cent today. The primary issues relate to trust; the CIF Code of Practice clearly addresses these concerns as suppliers are required to address key questions and provide evidence to the certification body to substantiate claims. The Code covers 3 main areas.  Transparency: Specified information must be made publicly available (e,g, ownership, board, locations) or during contracting process (e.g. migration paths, licensing and provisions for data protection and business continuity). Commercial terms in particular must be clear, including disclosure of fully burdened pricing, contract periods and renewal processes.  Capability: Suppliers complying with the Code are required to have documented management systems and resources in place to deliver specified capabilities such as service levels, information security management (including data protection), data management and service continuity.  Accountability: The executive(s) of the service provider are required to make binding commitments to the Code of Practice, including complaint resolution procedures with customers for code related practices. CIF - SELF CERTIFICATION www.cloudindustryforum.org CIF Certification now formally recognised by EU Commission through CCSL Bringing greater transparency and trust to doing business in the Cloud with its Code of Practice for MSPs
CIF - SELF CERTIFICATION www.cloudindustryforum.org Benefits In short the CIF self-certification mark is a“trust mark”for buying and selling Cloud Services, helping end users to identify trustworthy and capable Cloud suppliers. MSPs benefit from:  Winning additional business through their credibility especially with large customers by having a CIF Code of Practice self-certification mark.  Improved business delivery as the audit process helps identify capability gaps that can easily be remedied through standard business process improvement.  The opportunity to secure independent validation that their products or services meet recognised quality standards. MSP clients benefit from:  An increase in trust through assurance the organisation meets the code requirements.  More choice from quality providers as MSPs have demonstrated appropriate management processes and level of openness, transparency and accountability.  Access to industry information and guidance through the CIF website and comfort that the CIF self-certified company has appropriate business practices.  Clarity on how complaints can be raised, dealt with and escalated should there be any concerns. Effort and costs The effort required from a MSP depends on the maturity of the organisation’s management systems. Although all applications have to be completed within six months of registration, some have completed the process in as little as three weeks. With annual fees ranging from £500 for organisations with a turnover of up to £1m, to £2,500 for organisations with a turnover of up to £25m, CIF self-certification is open to all MSPs. To assist with the application process, a‘get you going’ consultancy day is available. The CLOUD INDUSTRY FORUM and CIF words and associated logos are trade marks. © Cloud Forum IP Limited 2013. All rights reserved NOTICE: This document is intended to provide general information in relation to the Cloud Industry Forum’s Code of Practice journey for Certification. It is not intended to be comprehensive and should not be acted or relied upon as being so. Professional advice appropriate to specific circumstances should always be obtained. 02/2014. The effort required from a MSP depends on the maturity of the organisation’s management systems Contact info@cloudindustryforum.org to find out how to apply

Recommended

3 burlington adam wonnacott legal
3 burlington adam wonnacott legal3 burlington adam wonnacott legal
3 burlington adam wonnacott legalCCR-interactive
 
Release iOS apps at scale
Release iOS apps at scaleRelease iOS apps at scale
Release iOS apps at scaleCsaba Szabó
 
General Resume
General ResumeGeneral Resume
General ResumeDustin Schwandt
 
Cloud Industry Forum - Cloud Adoption & Trends
Cloud Industry Forum - Cloud Adoption & TrendsCloud Industry Forum - Cloud Adoption & Trends
Cloud Industry Forum - Cloud Adoption & TrendsVuzion
 
Cloud credential council presentation
Cloud credential council presentationCloud credential council presentation
Cloud credential council presentationshuangyinli
 
New Era in Insurance - Cloud Computing
New Era in Insurance - Cloud ComputingNew Era in Insurance - Cloud Computing
New Era in Insurance - Cloud ComputingNIIT Technologies
 
Charles Taylor InsureTech - InsurTech Innovation Award 2022
Charles Taylor InsureTech - InsurTech Innovation Award 2022Charles Taylor InsureTech - InsurTech Innovation Award 2022
Charles Taylor InsureTech - InsurTech Innovation Award 2022The Digital Insurer
 
Financial Services-ready Public Cloud white paper [march 9, 2020]
Financial Services-ready Public Cloud white paper [march 9, 2020]Financial Services-ready Public Cloud white paper [march 9, 2020]
Financial Services-ready Public Cloud white paper [march 9, 2020]Scott Satterwhite
 

Recommended

3 burlington adam wonnacott legal
3 burlington adam wonnacott legal3 burlington adam wonnacott legal
3 burlington adam wonnacott legalCCR-interactive
 
Release iOS apps at scale
Release iOS apps at scaleRelease iOS apps at scale
Release iOS apps at scaleCsaba Szabó
 
General Resume
General ResumeGeneral Resume
General ResumeDustin Schwandt
 
Cloud Industry Forum - Cloud Adoption & Trends
Cloud Industry Forum - Cloud Adoption & TrendsCloud Industry Forum - Cloud Adoption & Trends
Cloud Industry Forum - Cloud Adoption & TrendsVuzion
 
Cloud credential council presentation
Cloud credential council presentationCloud credential council presentation
Cloud credential council presentationshuangyinli
 
New Era in Insurance - Cloud Computing
New Era in Insurance - Cloud ComputingNew Era in Insurance - Cloud Computing
New Era in Insurance - Cloud ComputingNIIT Technologies
 
Charles Taylor InsureTech - InsurTech Innovation Award 2022
Charles Taylor InsureTech - InsurTech Innovation Award 2022Charles Taylor InsureTech - InsurTech Innovation Award 2022
Charles Taylor InsureTech - InsurTech Innovation Award 2022The Digital Insurer
 
Financial Services-ready Public Cloud white paper [march 9, 2020]
Financial Services-ready Public Cloud white paper [march 9, 2020]Financial Services-ready Public Cloud white paper [march 9, 2020]
Financial Services-ready Public Cloud white paper [march 9, 2020]Scott Satterwhite
 
Cloud Security Governance
Cloud Security GovernanceCloud Security Governance
Cloud Security GovernanceBIJ MISHRA
 
GrowthEnabler In focus financial services - capital markets presentation
GrowthEnabler In focus financial services - capital markets presentationGrowthEnabler In focus financial services - capital markets presentation
GrowthEnabler In focus financial services - capital markets presentationGraphi Tales
 
Building trust for cloud customers - the value of cif certification
Building trust for cloud customers - the value of cif certificationBuilding trust for cloud customers - the value of cif certification
Building trust for cloud customers - the value of cif certificationDavid Terrar
 
Microsoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfMicrosoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfadanilsoafricanocarv
 
Compliance Service Management Solution
Compliance Service Management SolutionCompliance Service Management Solution
Compliance Service Management SolutionLawrbit Lextech India Private Limited
 
6 Key Stages to CIF Self-Certified Status_v1.3 DR1115
6 Key Stages to CIF Self-Certified Status_v1.3 DR11156 Key Stages to CIF Self-Certified Status_v1.3 DR1115
6 Key Stages to CIF Self-Certified Status_v1.3 DR1115Jason Wyatt
 
John Godwin's Presentation at Digital Leaders Conference 2015
John Godwin's Presentation at Digital Leaders Conference 2015John Godwin's Presentation at Digital Leaders Conference 2015
John Godwin's Presentation at Digital Leaders Conference 2015Digital Leaders
 
CIF Pro member Oct16 Final
CIF Pro member Oct16 FinalCIF Pro member Oct16 Final
CIF Pro member Oct16 FinalJason Wyatt
 
Facility Environmental Audit Guidelines
Facility Environmental Audit GuidelinesFacility Environmental Audit Guidelines
Facility Environmental Audit Guidelinesamburyj3c9
 
PCI PIN Security & Key Management Compliance
PCI PIN Security & Key Management CompliancePCI PIN Security & Key Management Compliance
PCI PIN Security & Key Management ComplianceControlCase
 
Business Processes to Business Performance (BP to BP)
Business Processes to Business Performance (BP to BP)Business Processes to Business Performance (BP to BP)
Business Processes to Business Performance (BP to BP)SSFIndia1
 
Pistoia Alliance European Conference 2015 - Stuart Robertson / Exostar
Pistoia Alliance European Conference 2015 - Stuart Robertson / ExostarPistoia Alliance European Conference 2015 - Stuart Robertson / Exostar
Pistoia Alliance European Conference 2015 - Stuart Robertson / ExostarPistoia Alliance
 
ENTITY EXCHANGE FOR SELL-SIDE FIRMS
ENTITY EXCHANGE FOR SELL-SIDE FIRMSENTITY EXCHANGE FOR SELL-SIDE FIRMS
ENTITY EXCHANGE FOR SELL-SIDE FIRMSAlyssa Lewis Matabeek
 
De Kloof tussen Standaarisatie en Stakeholders in business
De Kloof tussen Standaarisatie en Stakeholders in businessDe Kloof tussen Standaarisatie en Stakeholders in business
De Kloof tussen Standaarisatie en Stakeholders in businessInformatielogistiek
 
INTERFACE, by apidays - Building trust in Open Finance
INTERFACE, by apidays - Building trust in Open FinanceINTERFACE, by apidays - Building trust in Open Finance
INTERFACE, by apidays - Building trust in Open Financeapidays
 
Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...
Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...
Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...Hewlett Packard Enterprise Business Value Exchange
 
EMC Perspective: What Customers Seek from Cloud Services Providers
EMC Perspective: What Customers Seek from Cloud Services ProvidersEMC Perspective: What Customers Seek from Cloud Services Providers
EMC Perspective: What Customers Seek from Cloud Services ProvidersEMC
 
ABI
ABIABI
ABIDarren Patterson
 
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...Alan Yau Ti Dun
 
Emergence of the Digital VMO - be ready for multi-sourcing BIG scale
Emergence of the Digital VMO - be ready for multi-sourcing BIG scale Emergence of the Digital VMO - be ready for multi-sourcing BIG scale
Emergence of the Digital VMO - be ready for multi-sourcing BIG scaleBo Lund Rosenlund
 

More Related Content

Similar to CIF Self Certification MSP Oct15

Cloud Security Governance
Cloud Security GovernanceCloud Security Governance
Cloud Security GovernanceBIJ MISHRA
 
GrowthEnabler In focus financial services - capital markets presentation
GrowthEnabler In focus financial services - capital markets presentationGrowthEnabler In focus financial services - capital markets presentation
GrowthEnabler In focus financial services - capital markets presentationGraphi Tales
 
Building trust for cloud customers - the value of cif certification
Building trust for cloud customers - the value of cif certificationBuilding trust for cloud customers - the value of cif certification
Building trust for cloud customers - the value of cif certificationDavid Terrar
 
Microsoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfMicrosoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfadanilsoafricanocarv
 
6 Key Stages to CIF Self-Certified Status_v1.3 DR1115
6 Key Stages to CIF Self-Certified Status_v1.3 DR11156 Key Stages to CIF Self-Certified Status_v1.3 DR1115
6 Key Stages to CIF Self-Certified Status_v1.3 DR1115Jason Wyatt
 
John Godwin's Presentation at Digital Leaders Conference 2015
John Godwin's Presentation at Digital Leaders Conference 2015John Godwin's Presentation at Digital Leaders Conference 2015
John Godwin's Presentation at Digital Leaders Conference 2015Digital Leaders
 
CIF Pro member Oct16 Final
CIF Pro member Oct16 FinalCIF Pro member Oct16 Final
CIF Pro member Oct16 FinalJason Wyatt
 
Facility Environmental Audit Guidelines
Facility Environmental Audit GuidelinesFacility Environmental Audit Guidelines
Facility Environmental Audit Guidelinesamburyj3c9
 
PCI PIN Security & Key Management Compliance
PCI PIN Security & Key Management CompliancePCI PIN Security & Key Management Compliance
PCI PIN Security & Key Management ComplianceControlCase
 
Business Processes to Business Performance (BP to BP)
Business Processes to Business Performance (BP to BP)Business Processes to Business Performance (BP to BP)
Business Processes to Business Performance (BP to BP)SSFIndia1
 
Pistoia Alliance European Conference 2015 - Stuart Robertson / Exostar
Pistoia Alliance European Conference 2015 - Stuart Robertson / ExostarPistoia Alliance European Conference 2015 - Stuart Robertson / Exostar
Pistoia Alliance European Conference 2015 - Stuart Robertson / ExostarPistoia Alliance
 
De Kloof tussen Standaarisatie en Stakeholders in business
De Kloof tussen Standaarisatie en Stakeholders in businessDe Kloof tussen Standaarisatie en Stakeholders in business
De Kloof tussen Standaarisatie en Stakeholders in businessInformatielogistiek
 
INTERFACE, by apidays - Building trust in Open Finance
INTERFACE, by apidays - Building trust in Open FinanceINTERFACE, by apidays - Building trust in Open Finance
INTERFACE, by apidays - Building trust in Open Financeapidays
 
EMC Perspective: What Customers Seek from Cloud Services Providers
EMC Perspective: What Customers Seek from Cloud Services ProvidersEMC Perspective: What Customers Seek from Cloud Services Providers
EMC Perspective: What Customers Seek from Cloud Services ProvidersEMC
 
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...Alan Yau Ti Dun
 
Emergence of the Digital VMO - be ready for multi-sourcing BIG scale
Emergence of the Digital VMO - be ready for multi-sourcing BIG scale Emergence of the Digital VMO - be ready for multi-sourcing BIG scale
Emergence of the Digital VMO - be ready for multi-sourcing BIG scaleBo Lund Rosenlund
 

Similar to CIF Self Certification MSP Oct15 (20)

Cloud Security Governance
Cloud Security GovernanceCloud Security Governance
Cloud Security Governance
 
GrowthEnabler In focus financial services - capital markets presentation
GrowthEnabler In focus financial services - capital markets presentationGrowthEnabler In focus financial services - capital markets presentation
GrowthEnabler In focus financial services - capital markets presentation
 
Building trust for cloud customers - the value of cif certification
Building trust for cloud customers - the value of cif certificationBuilding trust for cloud customers - the value of cif certification
Building trust for cloud customers - the value of cif certification
 
Microsoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdfMicrosoft General - Checklist for Financial Institutions in Angola.pdf
Microsoft General - Checklist for Financial Institutions in Angola.pdf
 
Compliance Service Management Solution
Compliance Service Management SolutionCompliance Service Management Solution
Compliance Service Management Solution
 
6 Key Stages to CIF Self-Certified Status_v1.3 DR1115
6 Key Stages to CIF Self-Certified Status_v1.3 DR11156 Key Stages to CIF Self-Certified Status_v1.3 DR1115
6 Key Stages to CIF Self-Certified Status_v1.3 DR1115
 
John Godwin's Presentation at Digital Leaders Conference 2015
John Godwin's Presentation at Digital Leaders Conference 2015John Godwin's Presentation at Digital Leaders Conference 2015
John Godwin's Presentation at Digital Leaders Conference 2015
 
CIF Pro member Oct16 Final
CIF Pro member Oct16 FinalCIF Pro member Oct16 Final
CIF Pro member Oct16 Final
 
Facility Environmental Audit Guidelines
Facility Environmental Audit GuidelinesFacility Environmental Audit Guidelines
Facility Environmental Audit Guidelines
 
PCI PIN Security & Key Management Compliance
PCI PIN Security & Key Management CompliancePCI PIN Security & Key Management Compliance
PCI PIN Security & Key Management Compliance
 
Business Processes to Business Performance (BP to BP)
Business Processes to Business Performance (BP to BP)Business Processes to Business Performance (BP to BP)
Business Processes to Business Performance (BP to BP)
 
Pistoia Alliance European Conference 2015 - Stuart Robertson / Exostar
Pistoia Alliance European Conference 2015 - Stuart Robertson / ExostarPistoia Alliance European Conference 2015 - Stuart Robertson / Exostar
Pistoia Alliance European Conference 2015 - Stuart Robertson / Exostar
 
ENTITY EXCHANGE FOR SELL-SIDE FIRMS
ENTITY EXCHANGE FOR SELL-SIDE FIRMSENTITY EXCHANGE FOR SELL-SIDE FIRMS
ENTITY EXCHANGE FOR SELL-SIDE FIRMS
 
De Kloof tussen Standaarisatie en Stakeholders in business
De Kloof tussen Standaarisatie en Stakeholders in businessDe Kloof tussen Standaarisatie en Stakeholders in business
De Kloof tussen Standaarisatie en Stakeholders in business
 
INTERFACE, by apidays - Building trust in Open Finance
INTERFACE, by apidays - Building trust in Open FinanceINTERFACE, by apidays - Building trust in Open Finance
INTERFACE, by apidays - Building trust in Open Finance
 
Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...
Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...
Cloud Industry Forum Report: Cloud for Business, Why Security is No Longer a ...
 
EMC Perspective: What Customers Seek from Cloud Services Providers
EMC Perspective: What Customers Seek from Cloud Services ProvidersEMC Perspective: What Customers Seek from Cloud Services Providers
EMC Perspective: What Customers Seek from Cloud Services Providers
 
ABI
ABIABI
ABI
 
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
 
Emergence of the Digital VMO - be ready for multi-sourcing BIG scale
Emergence of the Digital VMO - be ready for multi-sourcing BIG scale Emergence of the Digital VMO - be ready for multi-sourcing BIG scale
Emergence of the Digital VMO - be ready for multi-sourcing BIG scale
 

CIF Self Certification MSP Oct15

  • 1. Cloud Industry Forum Self Certification Background The Cloud Industry Forum (CIF) is an independent trade membership body representing Managed Service Providers (MSPs) and technology companies, which aims to:  Champion and advocate the adoption of Cloud Services by businesses and individuals.  Raise industry standards and bring greater transparency and trust to doing business in the Cloud with its Code of Practice for MSPs.  Give end users the tools and information required in order to make informed business decisions about adoption of the Cloud. In June 2015, CIF surveyed 250 UK-based organisations. When asked about their biggest concerns during the decision-making process to move to the Cloud, 70 per cent cited data security and 61 per cent data privacy, both up from the 2014 figures of 61 per cent and 54 per cent respectively. There has been an even more marked increase in those worried about losing control/manageability of their IT systems; in 2014, just 24 per cent cited this as a concern, compared with 40 per cent today. The primary issues relate to trust; the CIF Code of Practice clearly addresses these concerns as suppliers are required to address key questions and provide evidence to the certification body to substantiate claims. The Code covers 3 main areas.  Transparency: Specified information must be made publicly available (e,g, ownership, board, locations) or during contracting process (e.g. migration paths, licensing and provisions for data protection and business continuity). Commercial terms in particular must be clear, including disclosure of fully burdened pricing, contract periods and renewal processes.  Capability: Suppliers complying with the Code are required to have documented management systems and resources in place to deliver specified capabilities such as service levels, information security management (including data protection), data management and service continuity.  Accountability: The executive(s) of the service provider are required to make binding commitments to the Code of Practice, including complaint resolution procedures with customers for code related practices. CIF - SELF CERTIFICATION www.cloudindustryforum.org CIF Certification now formally recognised by EU Commission through CCSL Bringing greater transparency and trust to doing business in the Cloud with its Code of Practice for MSPs
  • 2. CIF - SELF CERTIFICATION www.cloudindustryforum.org Benefits In short the CIF self-certification mark is a“trust mark”for buying and selling Cloud Services, helping end users to identify trustworthy and capable Cloud suppliers. MSPs benefit from:  Winning additional business through their credibility especially with large customers by having a CIF Code of Practice self-certification mark.  Improved business delivery as the audit process helps identify capability gaps that can easily be remedied through standard business process improvement.  The opportunity to secure independent validation that their products or services meet recognised quality standards. MSP clients benefit from:  An increase in trust through assurance the organisation meets the code requirements.  More choice from quality providers as MSPs have demonstrated appropriate management processes and level of openness, transparency and accountability.  Access to industry information and guidance through the CIF website and comfort that the CIF self-certified company has appropriate business practices.  Clarity on how complaints can be raised, dealt with and escalated should there be any concerns. Effort and costs The effort required from a MSP depends on the maturity of the organisation’s management systems. Although all applications have to be completed within six months of registration, some have completed the process in as little as three weeks. With annual fees ranging from £500 for organisations with a turnover of up to £1m, to £2,500 for organisations with a turnover of up to £25m, CIF self-certification is open to all MSPs. To assist with the application process, a‘get you going’ consultancy day is available. The CLOUD INDUSTRY FORUM and CIF words and associated logos are trade marks. © Cloud Forum IP Limited 2013. All rights reserved NOTICE: This document is intended to provide general information in relation to the Cloud Industry Forum’s Code of Practice journey for Certification. It is not intended to be comprehensive and should not be acted or relied upon as being so. Professional advice appropriate to specific circumstances should always be obtained. 02/2014. The effort required from a MSP depends on the maturity of the organisation’s management systems Contact info@cloudindustryforum.org to find out how to apply