\
 

Start Date

16-8-2018 12:00 AM

Description

The risks associated with the adoption of cloud computing solutions are dependent on a multitude of factors and vary considerably depending on the selected cloud service and deployment models. In addition, regulatory amendments regarding IT security and privacy trigger the need for flexible risk management solutions for cloud environments in order to adequately identify and manage the associated risks. Thus, the aim of this study is to design and implement a risk management tool for cloud services. By designing a modular and extensible tool, the individual risk profiles of the diverse cloud deployments can be addressed. The tool was developed and evaluated iteratively and by applying multiple methods, including a systematic literature analysis, expert interviews as well as surveys for evaluation. The developed risk management tool is useful for science and practice alike as it enables to effectively address risks resulting from cloud deployments and to adequately incorporate regulatory requirements.

Share

COinS
 
Aug 16th, 12:00 AM

RisCC – A Risk Management Tool for Cloud Computing Environments

The risks associated with the adoption of cloud computing solutions are dependent on a multitude of factors and vary considerably depending on the selected cloud service and deployment models. In addition, regulatory amendments regarding IT security and privacy trigger the need for flexible risk management solutions for cloud environments in order to adequately identify and manage the associated risks. Thus, the aim of this study is to design and implement a risk management tool for cloud services. By designing a modular and extensible tool, the individual risk profiles of the diverse cloud deployments can be addressed. The tool was developed and evaluated iteratively and by applying multiple methods, including a systematic literature analysis, expert interviews as well as surveys for evaluation. The developed risk management tool is useful for science and practice alike as it enables to effectively address risks resulting from cloud deployments and to adequately incorporate regulatory requirements.