Organizations’ leaders lack security expertise when moving IT operations to the Cloud. Almost all small to medium enterprises need to solve this problem. This qualitative research study using a Delphi technique, addressed the problem that there is no commonly understood and adopted best practice standard for small to medium sized enterprises (SMEs) on how to specifically assess security risks relating to the Cloud. Experienced risk experts from a local chapter of an international organization in Washington, D.C. responded to three sets of questions through SurveyMonkey. This research study shows the current state of Cloud risk assessments has not kept up with the changes in business and IT brought on by Cloud computing. Almost all respondents indicated that staffing and non-technical concerns affect SMEs that are transitioning to the Cloud. SMEs are not properly risk assessing and auditing Cloud computing environments. The primary mitigation recommendation for SMEs is outsourcing or using third parties on some or all of the SMEs’ Cloud computing. As the use of Cloud computing is becoming an inflection point for SMEs, SMEs’ decision makers need more research on both the process and the results. Cloud computing is fundamentally changing the daily pace of business, and this research study shows that SMEs have not kept pace. SMEs would greatly benefit from more research to help them adopt Cloud computing securely and effectively.
|Commitee:||Braxton, Sherri, Bakari, Marie|
|Department:||School of Business and Technology Management|
|School Location:||United States -- California|
|Source:||DAI-A 81/2(E), Dissertation Abstracts International|
|Subjects:||Information science, Computer Engineering, Information Technology|
|Keywords:||Cloud, Cloud adoption, Risk assessment, SME|
Copyright in each Dissertation and Thesis is retained by the author. All Rights Reserved
The supplemental file or files you are about to download were provided to ProQuest by the author as part of a
dissertation or thesis. The supplemental files are provided "AS IS" without warranty. ProQuest is not responsible for the
content, format or impact on the supplemental file(s) on our system. in some cases, the file type may be unknown or
may be a .exe file. We recommend caution as you open such files.
Copyright of the original materials contained in the supplemental file is retained by the author and your access to the
supplemental files is subject to the ProQuest Terms and Conditions of use.
Depending on the size of the file(s) you are downloading, the system may take some time to download them. Please be