The PCI DSS Cares about Disaster Recovery & Backups

The PCI DSS Cares about Disaster Recovery & Backups

In a separate post, we discussed Common Misconceptions around the Payment Card Industry Data Security Standard (PCI DSS). Building off those thoughts, this post will discuss an often-overlooked consideration when navigating the PCI DSS – disaster recovery (DR) and backups. West Monroe Partners has extensive experience conducting security due diligences for M&A transactions and helping...

Read More
Backing Up To the Cloud From the Cloud

Backing Up To the Cloud From the Cloud

In our last post, “Managing Administrative Access to an Azure-based Cardholder Data Environment,” we outlined ways to secure administrative workflows by using various Azure technologies. We’ll resume with part eight of the Azure Secure Cloud Migration blog series, covering considerations for backing up VMs in Azure and all the associated restrictions and caveats.…

Read More

Hits Keep on Coming: High Availability & Disaster Recovery at Healthcare.gov

When it comes to the IT challenges of the new Healthcare.gov Healthcare Exchange, the hits keep on coming.  Over the weekend, the healthcare.gov hosting vendor, Terremark (a subsidiary of Verizon), “experienced a failure in a networking component” and the attempted fix crashed the system.  The failure is in the “Data Services Hub,” which connects the exchange to other...

Read More

Are you Down with the Cloud?

In a previous post I discussed how an excellent IT enterprise is available 99.999% of the time – also called “5 nines.” In that piece I wrote about how an organization can incorporate cloud technologies while trying to achieve this ideal level of service. While this is certainly an admirable goal, I would be misleading you if I was implying that the cloud is the absolute most...

Read More

Control is an illusion: Why a data center in the cloud is better than yours

I often talk with IT leaders about using public cloud technologies such as infrastructure as a service, platform as a service, or hosted multi-tenant applications.  Generally, I hear one of two different reactions: If my business users’ requirements can be supported by public cloud based technologies, I am happy to get out of the data center business (i.e., if I can push those headaches...

Read More

Private Cloud CFO Lever Hybrid-Cloud

Depending on the professional circles in which you travel, cloud computing could mean different things to different people.  Generally though, most people can (knowingly or not) agree on the NIST definitions of there being essentially three distinct variants (I’ve excluded their Community Cloud definition): Private cloud. The cloud infrastructure is provisioned for exclusive use by a...

Read More

Cloud Privacy Concerns

In the United States, historically, there have been few laws on the books to protect individuals’ privacy.  With fresh examples of data breaches in the news, over the past decade there has been a fundamental shift at both the state and federal level leading to the adoption of new data privacy laws and interpretation of existing laws to provide for greater privacy over...

Read More

Lessons Learned From the Cloud, Part Deux

Welcome to the second post in this series on lessons learned from cloud messaging deployments. In the last post, (dated May 29, 2012) we covered four lessons learned: defining requirements before you begin, monitoring the cloud service, cloud vendor support, and having servers on-premise even though you’ve gone to the cloud.…

Read More
Phone: 312-602-4000
Email: marketing@westmonroepartners.com
222 W. Adams
Chicago, IL 60606
Show Buttons
Share On Facebook
Share On Twitter
Share on LinkedIn
Hide Buttons