Cloud makes access governance more difficult
Cloud has broadened access to information resources and made access governance difficult, reports Networking World citing a Ponemon Institute survey.
Seventy three percent of 728 IT professionals interviewed for 2010 Access Governance Trends Survey say cloud-based applications are enabling business users to get around existing access policies.
Business users have wrested more influence in granting access rights. Thirty seven percent of IT professionals said business units had the responsibility to provide access control in 2010. In 2008 only 29% shared this perception.
The reason for IT professionals taking backseat on cloud is easy to guess: An earlier Ponemon-Symantec survey had found that business users had raced ahead of the IT professionals in using cloud computing.
A surprising 68 percent of 637 IT professionals interviewed in Ponemon-Symantec survey had said ownership for evaluating cloud computing vendors resides with end users and business managers. The survey found that employees were making decisions without their IT departments’ inputs or full knowledge of the security risks involved.
The survey concluded that most organisations’ lacked procedures, policies and tools to secure sensitive information on cloud. Until IT teams get their act together, cloud-related governance issues will continue to torment enterprises.