Rys,
If your main concern is related to security, then of course CSA material is unequaled.
If you want to read about a systematic approach to cloud business case, adoption, deployment and governance, then please look at the various guides and papers at
www.omg.org/cloud (under "Published Deliverables").
If you want guidelines that are specific to financial institutions, then:
1. CSA has a financial services WG
2. ANSI X9 is preparing a standard called X9.125, which will be at the intersection of security/privacy and the financial vertical. I can get you a working draft if you ask.
4. Mick Talley from University Bank, who is part of that committee, could probably give you some direct advice (he likes to talk, so it won't be hard to get him going...):
[email protected]Regards,
Claude Baudoin
Omg |
remove preview |
|
Working Group |
The OMG Cloud Working Group publishes vendor-neutral guidance on important considerations for cloud computing adoption, highlighting standards, cloud customer requirements, and best practices to foster an ecosystem of open, standards-based cloud computing technologies. The Working Group publishes OMG discussion papers. |
View this on Omg > |
|
|
------------------------------
Claude Baudoin
cébé IT Knowledge Management
Co-Chair, OMG Cloud Working Group
https://www.omg.org/cloud------------------------------
Original Message:
Sent: Aug 23, 2021 07:32:30 AM
From: Shaharyar Shaikh
Subject: Simple effective cloud adoption and strategy
Hello Rys,
You have raise a very valid point. I have seen numerous organizations adopting adhoc approach or project based cloud adoption strategy, which works in short time but creates a huge management problem if it does not follow a well planned, and consistent approach. It could lead management issues, be it related to operations, security or cost. The biggest challenge that I have seen is since cloud workloads are not mainly dependent on on-premise datacenter so each project team can pick and choose cloud to their liking.
Organization do understand the cost-benefit factor when it comes to comparing cloud with on-premise data centers, but at the same time if they do want to truly benefit from it, they should induct Cloud Practice leaders or qualified cloud architects, give them authority and mandate to draft business driven cloud frameworks so that each project team and stakeholders should strictly follow it.
CSA CCM is one such framework that can help but it is more align to security. Others are more vendor driven. I can surely help with giving high level pointers based on my 6 years of Cloud Architect professional experience.
------------------------------
Shaharyar Shaikh
Principal Cloud Architect
Oracle Corporation
Original Message:
Sent: Aug 21, 2021 05:36:09 AM
From: Rys Mans
Subject: Simple effective cloud adoption and strategy
------------------------------
Rys Mans
Cyber Manager
Banking
------------------------------