Shelf Companies Aust, profile picture
Uploaded byShelf Companies Aust
PPTX, PDF354 views

Rubik cloud risks-jun2012

The document discusses the risks and benefits of cloud computing. It describes different types of cloud services including Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). Some key risks discussed include security, service interruptions, privacy, and outsourcing risks related to intellectual property and data ownership. However, the document also notes that cloud computing provides benefits like flexibility, scalability, cost savings, and increased security compared to traditional IT systems. It argues that while risks exist, they can be mitigated, and cloud adoption is important for competitiveness.

Embed presentation

Downloaded 11 times
The "Cloud" Risk Presentation Risks And Benefits
Cloud - What is it? • Software as a Service (SaaS) • GoTo meeting / Webex • Sales Force • Gmail & Google Docs • Zoho • Platform as a Service (PaaS) • Force.com • AppEngine - Google • Apple App store • Rubik Bank-in-a-Box • Infrastructure as a Service (IaaS) • Amazon S3 • MS Azure Note: all logos owned by respective businesses – illustration only
Cloud - What is it? • Characteristics • On demand • Any device • Self service • Pooled resource • Elastic provisioning • Service measurement • Deployment • Private Cloud • Public Cloud • Hybrids/shared
Why worry... • Your clients are using it • Your advisers / suppliers will use it (eg. Data rooms, credit decisioning,...) • You will be / are using it • Westpac doing risk modelling using cloud compute power • CBA signing legal documents using it • Various ADIs (of all sizes from Deutche Bank to the smallest Credit Unions) using for CRM, eMail, Office, Card processing, Collections, Core banking, Internet banking, treasury and more... • and more are planning to...
Technical Risks • Security • Service interruption • Disaster recovery • Privacy • Data separation
Outsourcing Risks • Intellectual Property • Data • Ownership • Co-mingling • Sovereignty • Sustainability • Compliance
Cloud Specific Risks • Contract / SLA • Liability • Penalties • Reputation • Metrics Mediocrity Rules in Cloud SLAs Source: Yankee Group, 2011
Credit Specific Risks - Client • Continuity - What happens to client if service provider fails? Can they transfer data and processes? • Business Interruption - Do Clients have plans that secure data and ensure recovery - these could be accounting, client, sales or other core business assets - has failure been tested? • Default - How do you get control/access of key Business assets during workout - consents for entry to property, but to data in a cloud data centre? Rights to passwords or control?
Credit Specific Risks - Portfolio • Concentration risk - what if many customers on same platforms - eg. The LinkedIn password loss, a widespread SalesForce failure? • Country risk - are systems being delivered from countries with poor IT, Network, or governance structures - eg. The Estonia/Russia hacker wars, Stuxnet, Patriot Act
So why use the cloud? • The benefits are too economically and competitively important to ignore • All of these risks can be mitigated • Often these are hidden risks in internal business practices – just not evident • Services have already moved to cloud and so we need to create standards for evaluating risk and managing
Final Slide Rubik Financial Limited ABN 51 071 707 232 • 10/17 Castlereagh St, Sydney, NSW • 1/1 Eden Park Drive, Macquarie Park, NSW • 4/68 St Georges Terrace, Perth , Western Australia • 24/22 Clifford Centre, Singapore 308900 • PO Box 213314 Dubai UAE PO Box 4808 Sydney NSW 2001 Phone: +61 2 9488 4000 Fax: +61 2 9449 1116 www.rubik.com.au
Challenges - what problem are we solving? • Data silos and maintaining a secure perimeter with legacy design • Energy consumption and low system usage • Increased labour costs and pool of professionals spreading and declining • User demands - used to many web based free, high quality, reliable services with great User Interfaces (UI) • Data volume growth
Technical Benefits • Provisioning speed • Storage capacity • Agility / flexibility • Elasticity • Load balancing – burst • „green‟ computing – power and resource saving • Attracts innovators and rapid prototyping • Specialized services – lesson learned can be shared across multiple tenants
Business • Ease of adaption • Configuration over customisation • Speed to market • Device independence • Availability • Resilience • Redundancy • Response • Cost structure • Units - Pay as you grow • Low Capex
Security benefits • Cloud has to be more secure simply because it is the greatest impediment to adopting cloud solutions! • Some advantages • Data held centrally • Data access, and backup all controlled and logged • System Snapshots for EOM, forensics, training, … • Virtual systems allow easy recovery • Security tests can be more extensive and frequent • A serious cloud provider will be in conformance with all required security and compliance requirements by design.
Hidden benefits • Legacy free • “Web” Standards - XML, Services • Common defined interfaces • Focus shift • Processes • Outcomes • Offers • Third party contracted management of some key business risks

More Related Content

PDF
Deploying Unified Communications with Lync on the easiest, most secure platform
byDell World
 
PDF
Innovations that simplify desktop virtualization
byDell World
 
PDF
Extensibility: The Key To Managing Your Entire Cloud Portfolio
byDell World
 
PDF
Make A Stress Free Move To The Cloud: Application Modernization and Managemen...
byDell World
 
PDF
Througwave Day 2015 - VMware Software-Defined Techtrend Event
byAruj Thirawat
 
PDF
Bringing the Power of Cloud Computing to Your User Desktops
byDizzion, Inc.
 
PPTX
Cloud Computing 101
byAmrita Gandikota
 
PPTX
OSCOMP Profile
byKunal Sajnani
 
Deploying Unified Communications with Lync on the easiest, most secure platform
byDell World
 
Innovations that simplify desktop virtualization
byDell World
 
Extensibility: The Key To Managing Your Entire Cloud Portfolio
byDell World
 
Make A Stress Free Move To The Cloud: Application Modernization and Managemen...
byDell World
 
Througwave Day 2015 - VMware Software-Defined Techtrend Event
byAruj Thirawat
 
Bringing the Power of Cloud Computing to Your User Desktops
byDizzion, Inc.
 
Cloud Computing 101
byAmrita Gandikota
 
OSCOMP Profile
byKunal Sajnani
 

What's hot

PDF
Concept of Cloud Computing
byAnne Starr
 
PDF
Benefits and Limitations of Cloud Computing
byAnne Starr
 
PPTX
Creating hybrid cloud openstack + public cloud
byMiguel Zuniga
 
PPTX
Ms.azure in detail
byNeethu Kuruvilla
 
PPTX
It resource us signal cloud presentation itr - final
bysvanelderen
 
PPTX
Codestone Cloud in a Box Overview
bySimonFenech
 
PPTX
Cloud Computing Overview
byManju Srinivas
 
PDF
Info sheet-Cloud
byColleen Plank
 
PDF
SHIP Brochure
byPati Ross-Concepcion
 
PDF
Cloud computing
byHussainSamaah1
 
PPTX
Cloud computing by G.SASHIDHAR
bysashi29
 
PPTX
Kick-Start Your Cloud
byDevFactoTechnologies
 
PDF
Adapting to a Hybrid World [Webinar on Demand]
byServerCentral
 
PDF
Manage Complex Digital Assets at Massive Scale
byNuxeo
 
PDF
Houd controle over uw data
byICT-Partners
 
PPTX
Other delivery models
byPreethi Venkatesan
 
PPTX
Infrastructure for SaaS Applications
byEjaz Siddiqui
 
PDF
Capture Your Cloud DaaS - The Business Opportunity
byNew Lease
 
PPT
Virtualization and Cloud Solutions
byiMatrix ICT Group
 
PDF
The Evolution Towards Cloud Computing
byAnne Starr
 
Concept of Cloud Computing
byAnne Starr
 
Benefits and Limitations of Cloud Computing
byAnne Starr
 
Creating hybrid cloud openstack + public cloud
byMiguel Zuniga
 
Ms.azure in detail
byNeethu Kuruvilla
 
It resource us signal cloud presentation itr - final
bysvanelderen
 
Codestone Cloud in a Box Overview
bySimonFenech
 
Cloud Computing Overview
byManju Srinivas
 
Info sheet-Cloud
byColleen Plank
 
SHIP Brochure
byPati Ross-Concepcion
 
Cloud computing
byHussainSamaah1
 
Cloud computing by G.SASHIDHAR
bysashi29
 
Kick-Start Your Cloud
byDevFactoTechnologies
 
Adapting to a Hybrid World [Webinar on Demand]
byServerCentral
 
Manage Complex Digital Assets at Massive Scale
byNuxeo
 
Houd controle over uw data
byICT-Partners
 
Other delivery models
byPreethi Venkatesan
 
Infrastructure for SaaS Applications
byEjaz Siddiqui
 
Capture Your Cloud DaaS - The Business Opportunity
byNew Lease
 
Virtualization and Cloud Solutions
byiMatrix ICT Group
 
The Evolution Towards Cloud Computing
byAnne Starr
 

Similar to Rubik cloud risks-jun2012

PDF
MISA Cloud workshop - Cloud 101
byMISA Ontario Cloud SIG
 
PPT
Cloud Computing and Records Management
bygbroadbent67
 
PDF
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
byikanow
 
PPT
Effectively and Securely Using the Cloud Computing Paradigm
byfanc1985
 
PPT
Securing Apps and Data in the Cloud - July 23 2014 Toronto Board of Trade
byLisa Abe-Oldenburg, B.Comm., JD.
 
PDF
How Secure Is Cloud
byWilliam Lam
 
PPT
Cloud Computing - Benefits and Risks
byMichael Yung
 
PDF
Frans van Leuven - The security aspects of Cloud Services
byVNU Exhibitions Europe
 
PPTX
How Cloud Computing Will Transform Information Management
byKnowledge Cue
 
PPT
Welcome to the Cloud!
byimogokate
 
PPT
Radu crahmaliuc 23feb2012
byAgora Group
 
PPT
BBIM510 Lecture (2014)
byArjun Shivraj
 
PPTX
Cloud Computing with InduSoft
byAVEVA
 
PPT
Presentation on Effectively and Securely Using the Cloud Computing Paradigm v26
byBill Annibell
 
PPT
Presentation On Effectively And Securely Using The Cloud Computing Paradigm V26
byTT L
 
PDF
SECURITY ISSUES IN CLOUD COMPUTING
byInternational Journal of Technical Research & Application
 
PPT
Securing Apps & Data in the Cloud by Spyders & Netskope
byAhmad Abdalla
 
PPTX
Introduction to Cloud computing
byKumayl Rajani
 
PPTX
Cloud computing
byneha kamboj
 
PPTX
Cloud computing
bySuryavamsi51
 
MISA Cloud workshop - Cloud 101
byMISA Ontario Cloud SIG
 
Cloud Computing and Records Management
bygbroadbent67
 
Dr. Michael Valivullah, NASS/USDA - Cloud Computing
byikanow
 
Effectively and Securely Using the Cloud Computing Paradigm
byfanc1985
 
Securing Apps and Data in the Cloud - July 23 2014 Toronto Board of Trade
byLisa Abe-Oldenburg, B.Comm., JD.
 
How Secure Is Cloud
byWilliam Lam
 
Cloud Computing - Benefits and Risks
byMichael Yung
 
Frans van Leuven - The security aspects of Cloud Services
byVNU Exhibitions Europe
 
How Cloud Computing Will Transform Information Management
byKnowledge Cue
 
Welcome to the Cloud!
byimogokate
 
Radu crahmaliuc 23feb2012
byAgora Group
 
BBIM510 Lecture (2014)
byArjun Shivraj
 
Cloud Computing with InduSoft
byAVEVA
 
Presentation on Effectively and Securely Using the Cloud Computing Paradigm v26
byBill Annibell
 
Presentation On Effectively And Securely Using The Cloud Computing Paradigm V26
byTT L
 
SECURITY ISSUES IN CLOUD COMPUTING
byInternational Journal of Technical Research & Application
 
Securing Apps & Data in the Cloud by Spyders & Netskope
byAhmad Abdalla
 
Introduction to Cloud computing
byKumayl Rajani
 
Cloud computing
byneha kamboj
 
Cloud computing
bySuryavamsi51
 

Recently uploaded

PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PDF
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
PDF
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
PPTX
Real-Time KPI Dashboard Playbook: What to Track Live and What Not To
byvictorworkvebo
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PDF
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
PDF
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PDF
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
PDF
apidays Paris 2025 | Zero Trust By Design
byapidays
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PDF
apidays New York 2025 | AI in Application Security
byapidays
 
PDF
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
PDF
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab
 
PDF
Reality Drift: Why Systems Keep Working After Meaning Drops Out
byReality Drift Archive | A. Jacobs
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PDF
Bringing AI into R&D, Taking a Human-Centric Approach / Haim Yadid
byHaim Yadid
 
PDF
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
How AI Can Help Platform Engineers Build Better Platforms
byAll Things Open
 
HOW TO OVERCOME THE THREATS OF ARTIFICIAL INTELLIGENCE AGAINST HUMANITY.pdf
byFaga1939
 
Real-Time KPI Dashboard Playbook: What to Track Live and What Not To
byvictorworkvebo
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
Logical Optimal Actions – Towards Knowledge-based Reinforcement Learning with...
byMichiaki Tatsubori
 
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
Effortless Distributed Systems with Aspire.pdf
byParticular Software
 
apidays Paris 2025 | Zero Trust By Design
byapidays
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
apidays New York 2025 | AI in Application Security
byapidays
 
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab
 
Reality Drift: Why Systems Keep Working After Meaning Drops Out
byReality Drift Archive | A. Jacobs
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Bringing AI into R&D, Taking a Human-Centric Approach / Haim Yadid
byHaim Yadid
 
Spec-Driven Development with Kiro: Elevating Software Quality, Traceability, ...
byHaim Michael
 

Rubik cloud risks-jun2012

  • 1.
  • 2.
    Cloud - Whatis it? • Software as a Service (SaaS) • GoTo meeting / Webex • Sales Force • Gmail & Google Docs • Zoho • Platform as a Service (PaaS) • Force.com • AppEngine - Google • Apple App store • Rubik Bank-in-a-Box • Infrastructure as a Service (IaaS) • Amazon S3 • MS Azure Note: all logos owned by respective businesses – illustration only
  • 3.
    Cloud - Whatis it? • Characteristics • On demand • Any device • Self service • Pooled resource • Elastic provisioning • Service measurement • Deployment • Private Cloud • Public Cloud • Hybrids/shared
  • 4.
    Why worry... • Yourclients are using it • Your advisers / suppliers will use it (eg. Data rooms, credit decisioning,...) • You will be / are using it • Westpac doing risk modelling using cloud compute power • CBA signing legal documents using it • Various ADIs (of all sizes from Deutche Bank to the smallest Credit Unions) using for CRM, eMail, Office, Card processing, Collections, Core banking, Internet banking, treasury and more... • and more are planning to...
  • 5.
    Technical Risks • Security • Service interruption • Disaster recovery • Privacy • Data separation
  • 6.
    Outsourcing Risks • Intellectual Property • Data • Ownership • Co-mingling • Sovereignty • Sustainability • Compliance
  • 7.
    Cloud Specific Risks • Contract / SLA • Liability • Penalties • Reputation • Metrics Mediocrity Rules in Cloud SLAs Source: Yankee Group, 2011
  • 8.
    Credit Specific Risks- Client • Continuity - What happens to client if service provider fails? Can they transfer data and processes? • Business Interruption - Do Clients have plans that secure data and ensure recovery - these could be accounting, client, sales or other core business assets - has failure been tested? • Default - How do you get control/access of key Business assets during workout - consents for entry to property, but to data in a cloud data centre? Rights to passwords or control?
  • 9.
    Credit Specific Risks- Portfolio • Concentration risk - what if many customers on same platforms - eg. The LinkedIn password loss, a widespread SalesForce failure? • Country risk - are systems being delivered from countries with poor IT, Network, or governance structures - eg. The Estonia/Russia hacker wars, Stuxnet, Patriot Act
  • 10.
    So why usethe cloud? • The benefits are too economically and competitively important to ignore • All of these risks can be mitigated • Often these are hidden risks in internal business practices – just not evident • Services have already moved to cloud and so we need to create standards for evaluating risk and managing
  • 11.
    Final Slide Rubik Financial Limited ABN 51 071 707 232 • 10/17 Castlereagh St, Sydney, NSW • 1/1 Eden Park Drive, Macquarie Park, NSW • 4/68 St Georges Terrace, Perth , Western Australia • 24/22 Clifford Centre, Singapore 308900 • PO Box 213314 Dubai UAE PO Box 4808 Sydney NSW 2001 Phone: +61 2 9488 4000 Fax: +61 2 9449 1116 www.rubik.com.au
  • 12.
    Challenges - whatproblem are we solving? • Data silos and maintaining a secure perimeter with legacy design • Energy consumption and low system usage • Increased labour costs and pool of professionals spreading and declining • User demands - used to many web based free, high quality, reliable services with great User Interfaces (UI) • Data volume growth
  • 13.
    Technical Benefits • Provisioningspeed • Storage capacity • Agility / flexibility • Elasticity • Load balancing – burst • „green‟ computing – power and resource saving • Attracts innovators and rapid prototyping • Specialized services – lesson learned can be shared across multiple tenants
  • 14.
    Business • Ease ofadaption • Configuration over customisation • Speed to market • Device independence • Availability • Resilience • Redundancy • Response • Cost structure • Units - Pay as you grow • Low Capex
  • 15.
    Security benefits • Cloud has to be more secure simply because it is the greatest impediment to adopting cloud solutions! • Some advantages • Data held centrally • Data access, and backup all controlled and logged • System Snapshots for EOM, forensics, training, … • Virtual systems allow easy recovery • Security tests can be more extensive and frequent • A serious cloud provider will be in conformance with all required security and compliance requirements by design.
  • 16.
    Hidden benefits • Legacy free • “Web” Standards - XML, Services • Common defined interfaces • Focus shift • Processes • Outcomes • Offers • Third party contracted management of some key business risks

Editor's Notes

  • #13 But does your organisation use the cloud already?Middleware/ESB, Virtualisation, Web services, Packaged software, WDSL etc. already are steps toward CloudDigital Universe (the amount of digitalinformation created and replicated in the world) grew by 62% to nearly 800,000 petabytes (a petabyte is a million gigabytes, or a quintillion bytes), and this year, the DigitalUniverse will grow almost as fast to 1.2 million petabytes, or 1.2 zettabytes, according to IDC's annual report, "The Digital Universe Decade - Are You Ready?" May 2010
  • #14 Replication - automation and consistency of deliveryScalability - in Processing and storage (hint use some SSD!)Provisioning - fast setup, and strong DR, and updated regularly across multiple tenantsMore efficient resource use leads to power and then environmental savingsAttracts staff who seek to be on the latest capabilities, but also allows them to rapid POC systems and new ways of operatingFacilities managed by providers whose core capability is providing and maintaining the right facilities – they can share learnings and specialist skills across multiple tenants
  • #15 Cloud system have to be able to adapt to a number of ways of working within the general modelSystems that took 3-12 mths to get onto hardware and integrated can now be created in days and weeksMobility and device independenceThe systems have known, contracted, and reported service levels – and the contracted response rate must be met or penalties apply – this may be true with internal IT resources but it removes any favours
  • #16 Its not all bad news – you might find some improvements in:Less data loss – the data is in the cloud, not the deviceBetter backup, mirroring and central access controlIf investigating a breach an entire image of the system can be made and stored while business continuesCloud systems have to encrypt and timestamp everything as you must know what went wrong and when – combined with massive storage – log away!Patching, Rollbacks and performance optimisation all improved by virtualised systemsPenetration testing and other high value security tests can be more regular as shared across multiple tenants
  • #17 The hardware is abstracted/virtualised and the interfaces are all messages and queues so the legacy can be ‘ignored’ or encapsulated.Cloud relies on common standards, definitions and structures to maximise interoperabilityThe interfaces wind up being ‘common’ across organizations – eg. Salesforce spreads with sales person migrationShift in IT org focus and skills from H/w network to applications, data, processes – more staff to work on thereal business issues.Someone else responsible for some of your most challenging business risk - negative incidents (data loss, fraud, downtime) can be managed with more clarity and less direct brand damage