Cloud computing is both the present and the future of IT ... but there are legal, business, security, privacy, and technical risks.
Tokyo, Japan (PRWEB) May 17, 2011
Cloud computing is both the present and the future of information technology (IT). The benefits of a low-cost, unlimited, utility-like service is just too compelling for organizations to ignore. But there are legal, business, security, privacy and technical risks. Now a new book, Cloud Computing for Lawyers and Executives – A Global Approach demystifies cloud computing for those involved in seeking out, assessing, negotiating and approving cloud computing service agreements.
With summaries written for executives (“Executive Takeaways”) and in-depth risk and legal explanations and analysis for lawyers, this book simultaneously speaks to both audiences. This includes leaders and lawyers inside corporations and government and those that advise them. After introducing cloud computing by addressing the questions of what, why and when to use cloud computing and a financial analysis, the book then covers the laws around the world that cloud computing services will implicate.
It then spends the next two chapters on identifying the information security and privacy risks of cloud computing and the appropriate responses to those risks. Responses include utilizing cloud-specific control frameworks, cloud standards, and cloud audit and assessment methodologies. The next chapter discusses the preservation and breach of data in the cloud, including how to address litigation and investigation issues such as e-discovery in the cloud and how data breach response differs in the cloud.
Then next two chapters cover negotiation of the cloud services agreement. Adding to all of the risks presented in the prior chapters are additional legal risks. Examples of provisions from five cloud computing services contracts with leading providers are then highlighted. This is followed by a comprehensive explanation of a methodology to use in these negotiations, which is applied to two typical organizations, a multinational organization and a domestic small and medium-sized business.
Up to date through May 2011, the book closes with a chapter on legal ethics, the issues specific to consumer use of the cloud and the steps to take to prepare for cloud computing. There is an appendix listing the organizations involved in setting cloud computing standards. To maintain its global viewpoint, examples are used from around the world, international standards are discussed, and the statutes and rules explain the law from more than fifty (50) countries. It is truly a global approach to cloud computing!
About the Author
Uniquely qualified to author such a book, Thomas J. Shaw, Esq., is an attorney at law, CPA, CRISC, CIPP, CISM, ERMP, CISA, CGEIT, CCSK with many years of experience in leading organizations and in law, IT, information security, privacy, audit, risk, compliance, and cloud computing. He has resided internationally for the last seventeen years, so understands the needs of organizations world-wide. He was the lead author and editor of the recent ABA book Information Security and Privacy – A Practical Guide for Global Executives, Lawyers and Technologists. A frequent author and speaker on legal technology issues, he is also the editor of two ABA periodicals on information security, privacy and e-discovery and leads the cloud risk assessment firm CloudRisk Asia.
The book may be ordered now at Amazon in softcover and shortly in ebook format.
For review copies, contact firstname.lastname@example.org