By Subraya Mallya
Companies large and small added Cloud Computing as an agenda item to every key decision they made around IT last year. As companies continued to combat the budget pressures stemming from the financial downturn the cost-efficiencies delivered by SaaS, PaaS, IaaS are becoming increasing irresistible. These topics are no longer fancy acronyms that are restricted […]
Tags: Cloud APIs, Cloud Interoperability, Computing Capacity, Data Governance, Data Sharding, HIPAA, Infrastructure-as-a-service, Monitoring, PCI-DSS, Platform-as-a-Service, Portable Workloads, Quality of Service, Sarbanes Oxley (SOX) 404, Service Level Agreement (SLA), Virtualization
By Subraya Mallya
Sarbanes Oxley Act (SOX) enacted in 2002 created a watershed moment for companies forcing them to take a critical look at their internal controls and processes. Executives operating unfettered until then abusing company resources and shareholder money were now asked to account for their actions. Although the mandates under the SOX Act started out murky […]
Tags: Access Control, Material Risk, PCI-DSS, Risk Management, Sarbanes Oxley (SOX) 404, Segregation of Duties (SOD)
By Subraya Mallya
One of the key concerns associated with Software-as-a-Service (SaaS) is and will be data security. The fact that your business data goes out of your network and resides in the software vendor’s data center should warrant concern. But with upfront due diligence and ongoing oversight, you should be able to get you past your inhibitions […]
Tags: Intrusion Detection Systems, Intrusion Prevention Systems, PCI-DSS, Sarbanes Oxley (SOX) 404, SAS-70 Type II Certification, Single Sign-On
By Subraya Mallya
In the last two posts, I covered considerations to be made in Choosing a SaaS vendor and Technology Considerations. In this post I will go into the governance controls you should include in your evaluation checklist of a SaaS vendor. In this day and age of increasing governance and regulatory compliance mandates, the evaluation of […]
Tags: Access Control, business continuity, Change Management, Data Leaks, Data Portability, Data Retention, Data Separation, Disaster Recovery, Encryption, GLBA, HIPAA, Intrusion Detection Systems, Log Management, PCI-DSS, Sarbanes Oxley (SOX) 404, Scheduled Maintenance
By Subraya Mallya
As SaaS model becomes more mature and moves beyond Sales Automation into the more involved functional domains of Human Resources Management, Project Management, Supply Chain and Financial Analysis, IT executives in companies now have to define the right process to procure SaaS offerings. While it is still a software that you are buying, the dynamics […]
Tags: business continuity, customer on-boarding, Disaster Recovery, On-Premise Software, Product Roadmap, Provisioning, RFP, Sarbanes Oxley (SOX) 404, SAS-70 Type II Certification, Service Level Agreement (SLA), Software-as-a-Service (SaaS)
By Subraya Mallya
If you are customer having a business application like Oracle E-Business Suite, PeopleSoft or SAP in production I am sure you have constantly run into this need to clone/replicate Production database. Why would someone need a copy of production instance? Some of the most common reasons are to create a test environment with representative production […]
Tags: Data Masking, Data Scrambling, GLBA, HIPAA, Oracle E-Business Suite, Password Encryption, PCI-DSS, Sarbanes Oxley (SOX) 404
Recent Comments