Abstract
Internal audit is well positioned through its role as an assurance function of the organization to help management and the board identify and consider the key risks of leveraging cloud computing technology. This article discusses steps internal audit can take, including: (1) Defining a cloud strategy; (2) Evaluating vendors; (3) Implementing a cloud computing model; and (4) Monitoring vendors.
Notes
1. Introduction to Cloud Computing Architecture, Sun Microsystems Inc., June 2009, available for download at: http://www.techrepublic.com/whitepapers/introduction-to-cloud-computing-architecture/1188419
2. Security of Cloud Computing Users: A Study of Practitioners in the U.S. and Europe, Ponemon Institute LLC, May 2010, available for download at: http://www.techrepublic.com/whitepapers/security-of-cloud-computing-users-a-study-of-practitioners-in-the-us-europe/2109745