As we discuss risk throughout this paper, it’s important to remember that no IT activity can be made entirely without risk whether cloud computing is part of the picture or not. Furthermore, as ENISA notes:
“Risk should always be understood in relation to overall business opportunity and appetite for risk — sometimes risk can be mitigated by opportunity.” Governance means assessing risk and making the appropriate decisions in the context of business impact, cost, legal, and regulatory requirements, and opportunities to mitigate the risk.
In this whitepaper, we examine:
• Some of the key governance issues affecting both private and public clouds
• Frequently cited risks and ways to mitigate them
• Approaches that Red Hat is taking to help customers implement effective cloud governance
• Best practices that are part of a savvy cloud strategy