Chapter 15: Governing the Cloud

Following the dot-com crash and corporate scandals such as Enron, Tyco, and WorldCom, pressures emerged from the government, shareholders, and numerous other stakeholders for companies to increase their financial oversight to reduce opportunity for fraud and to restore confidence in corporate financial reporting. The need for better corporate governance became an issue for all public companies. Because most of the data that drive corporate financial reports originate within data centers, the new era of governance has brought greater visibility and a greater need for controls to IT departments.

Learning Objectives

This chapter examines corporate and IT governance and the new challenges introduced by cloud migrations. By the time you finish this chapter, you will be able to do the following:

  • Define and describe corporate governance.
  • Define business strategy and provide examples of strategic goals.
  • Discuss how companies use the Capability Maturity Model (CMM) to measure their current capabilities.
  • Define and describe internal controls.
  • Define and describe IT governance.
  • Discuss the various types of governance a company must perform.
  • Discuss the role of Sarbanes-Oxley in corporate IT governance.
  • Discuss factors to consider when developing governance procedures for the cloud.
Cloud Computing book cover

Chapter 15 Pretest/Self-Assessment

Visit the Jones & Bartlett Learning site additional technology book solutions.

Chapter 15 Related Content

Organization for Economic Cooperation and Development (OECD)

Capability Maturity Model (CMM)

Committee of Sponsoring Organizations of the Treadway Commission

Control Objectives for Information and Related Technology (COBIT)


IT Governance Institute (ITGI)