Abstract
In today’s corporate world, the notion of corporate
governance has taken a more important role in the management
of large corporates. There is a growing consensus that large
corporates ought to take more of a stewardship approach to
running a company in a clear attempt to move away from the agency theory approach, with all its attendant problems and issues. A fundamental component of corporate governance concerns the adequate recognition of risk faced by the organisation and dealing with it appropriately. Traditional corporate IT risk is well understood, as are the mitigation strategies needed to address this important area. Large corporates also understand risk theory well, and how finding the right balance between risk and profitability is key to ensuring profitability can be maximised while ensuring long term sustainability and resilience are also achieved. We assert that the cloud computing paradigm, while economically attractive to corporates, provides such a step change from traditional IT paradigms, that new risks have evolved, which are not well understood, leading to the possibility of unintended exposure to these sometimes considerable risks. We propose a different approach to the quantification of these risks, which we believe will provide a more robust approach to understanding the potential exposure they face when using cloud.
governance has taken a more important role in the management
of large corporates. There is a growing consensus that large
corporates ought to take more of a stewardship approach to
running a company in a clear attempt to move away from the agency theory approach, with all its attendant problems and issues. A fundamental component of corporate governance concerns the adequate recognition of risk faced by the organisation and dealing with it appropriately. Traditional corporate IT risk is well understood, as are the mitigation strategies needed to address this important area. Large corporates also understand risk theory well, and how finding the right balance between risk and profitability is key to ensuring profitability can be maximised while ensuring long term sustainability and resilience are also achieved. We assert that the cloud computing paradigm, while economically attractive to corporates, provides such a step change from traditional IT paradigms, that new risks have evolved, which are not well understood, leading to the possibility of unintended exposure to these sometimes considerable risks. We propose a different approach to the quantification of these risks, which we believe will provide a more robust approach to understanding the potential exposure they face when using cloud.
Original language | English |
---|---|
Title of host publication | Eighth International Conference on Cloud Computing, GRIDs, and Virtualization (CLOUD COMPUTING 2017) |
Editors | Carlos Becker Westphall, Yong Woo Lee, Bob Duncan, Aspen Olmsted, Michael Vassilakopoulos, Costas Lambrinoudakis, Sokratis K. Katsikas, Raimund Ege |
Place of Publication | Athens |
Publisher | IARIA |
Pages | 139-144 |
Number of pages | 6 |
ISBN (Print) | 9781612085296 |
Publication status | Published - 20 Feb 2017 |
Event | The Eighth International Conferences on Cloud Computing, GRIDs, and Virtualization - Athens, Greece Duration: 19 Feb 2017 → 23 Feb 2017 |
Conference
Conference | The Eighth International Conferences on Cloud Computing, GRIDs, and Virtualization |
---|---|
Abbreviated title | CLOUD COMPUTING 2017 |
Country/Territory | Greece |
City | Athens |
Period | 19/02/17 → 23/02/17 |
Keywords
- Corporate governance
- corporate stewardship
- risk appetite
- cloud security risk