Following the fallout from Heartbleed, more and more security analysts are suggesting that data stored in the cloud is more vulnerable than we realize. In fact, even ‘zero-knowledge’ cloud storage providers admit their data is not entirely safe. With all the talk of personal information being exposed—and a large amount of that being stored in the cloud—we thought it might be worth re-examining a few important points.
A recent CIO article by Jennifer Lonoff Schiff – 9 Things You Need to Know Before You Store Data in the Cloud – highlighted some of those important considerations:
- Make sure the cloud vendor is up-to-date on data center and industry certifications
- Pick a provider that knows your industry
- Understand the bandwidth limitations
- Make sure data is encrypted
- Carefully read the provider’s SLA before signing up
- Know how much the cloud will actually cost you
- Don’t overbuy storage
- Make sure you can recover/restore your data
- Finally, have a backup plan
These are certainly worthy considerations that must be dealt with before you store data in the cloud. She also shares five questions that David Wilson, an attorney specializing in cyber security, suggests asking any prospective cloud providers:
- How long have they been in business?
- Where are their servers located?
- What is their security like? Will they provide a copy of their policies?
- Have they had a security audit in the last year and will they share the results?
- What assurances are they willing to make in writing?
These go nicely with our list of 30 questions to ask before turning to the cloud. But unfortunately, no options for storing data in the cloud can be 100 percent secure, especially with the Internet of Things (IoT) and the vast amounts of data that now exist in the cloud. Whether or not the cloud is a viable option for you ultimately depends on the sensitivity of your data.