Livefyre Profile

Activity Stream

...and please excuse my grammar and sentence structure. "to be compliant w market needs" should have been "...a great guidance to be compliant..." I blame your lattes @neilcattermull

4 days, 2 hours ago on Compliance: Data Storage in a Regulated World

Reply

@marketing2 Sorry for my very very late reply. My intention was to agree to Neil and your opinion; that security and compliance should be separated. But they are very close related to each other. To comply with rules and laws you need a certain amount of security. To set up an amount of security rules and laws are a great guidance. Sec and Comp is not the same but it’s difficult to discuss one of them without mention the other one to be compliant with market needs.  I don’t know about rwhosting but I don’t see the problem you mention. They can tell if they comply with different types of standards, rules and laws but in the end it’s you who owns the responsibility to be compliant. My point was that rwhosting, or any other SP, normally/most probably are great to provide security but often don’t have capability (knowledge, room and money to host the role, trustworthiness (?)) to truly advice how you becomes compliant. Instead you have to consult a compliance experts, like IT lawyers. To finally tell if you are and rwhosting makes you compliant you have the audit. That part shouldn’t be handled by rwhosting even if they were allowed to do it, they would most probably be considered as biased.


BTW As mentioned, I don’t know anything about rwhosting (maybe I should?!), they only became an example since you brought them up. :)

4 days, 5 hours ago on Compliance: Data Storage in a Regulated World

Reply

@comparethecloud "if your computing is connected to the Internet, then your data is at risk, no matter where it is." Exactly! And I mean the data is at greater risk if it's on prem operated by "your self". Core business for CSP's is to deliver available and secure services. Most on prem have another core.

2 weeks, 2 days ago on Is NSA killing cloud?

Reply

Should we distinguish/discuss them as "two different types of IT" from where you have to choose one or the other, or mix together as hybrids? It's important to separate them; cloud isn't equal to virtualization and vice versa, but; virtualization is fundamental in cloud computing. Virtualization is an operation technique and technique and cloud is a service delivery model/technique?!

2 weeks, 6 days ago on Virtualization versus Cloud – and when to use them

Reply