Cloud services are based on a level of standardization for technology components. The underlying logic is that a significant amount of IT client demand has more similarities than differences, and this is key to economies of scale for many common technology requirements. Key design components of cloud services are scalability and resilience, and many cloud services use a standard web browser to control demand and implement services without any unusual software add-ons.
This sample document can be used as a guide for understanding the characteristics associated with an organization’s cloud service process. Questions to consider include:
- Can any third party access my data (your service providers) and how?
- Can you ensure that all my data is erased at the end of service?
- How often do you scan for vulnerabilities on your network and applications?
- Can I conduct an external vulnerability assessment on your network and how?
- What’s your vulnerability remediation process?