Chapter 15: Governing the Cloud
Following the dot-com crash and corporate scandals such as Enron,
Tyco, and WorldCom, pressures emerged from the government, shareholders,
and numerous other stakeholders for companies to increase their
financial oversight to reduce opportunity for fraud and to restore confidence
in corporate financial reporting. The need for better corporate governance
became an issue for all public companies. Because most of the
data that drive corporate financial reports originate within data centers,
the new era of governance has brought greater visibility and a greater need
for controls to IT departments.
This chapter examines corporate and IT governance and the new challenges
introduced by cloud migrations. By the time you finish this
chapter, you will be able to do the following:
- Define and describe corporate governance.
- Define business strategy and provide examples of strategic goals.
- Discuss how companies use the Capability Maturity Model (CMM) to
measure their current capabilities.
- Define and describe internal controls.
- Define and describe IT governance.
- Discuss the various types of governance a company must perform.
- Discuss the role of Sarbanes-Oxley in corporate IT governance.
- Discuss factors to consider when developing governance procedures for