SAP DIGITAL CONSUMER INSIGHT: Customer Stories and Sample Use Cases

When businesses unlock the power of consumer mobile data, great things can happen. Find out more by reading some of the recent Customer Stories and Sample Use Cases...


Better Data Risk Mitigation For SaaS Providers

Better Data Risk Mitigation for SaaS Providers


We live in a world that is rife with internal-controls breakdowns that result in security and data breaches, which can cause tremendous business and reputational damage for organizations.

The rise of cloud computing systems has now created an even greater need for organizations to develop the right controls to protect data that reside in the ‘cloud.’ Virtually every organization leverages Software-as-a-Service (SaaS) solutions – where data can be easily accessed through a web browser.

As most technology providers are migrating away from larger enterprise data systems to the cloud, it opens the doors to vulnerabilities. With SaaS providers hosting vital client data, they need to provide the right level of assurance that their clients’ sensitive data resides in a highly trusted environment.

Created by the American Institute of Certified Public Accountants (AICPA), Service Organization Control 2 (SOC 2) reporting allows any SaaS provider to mitigate risk when it comes to managing sensitive customer data in a virtualized environment.

Going through a SOC 2 security audit and receiving a favorable report allows SaaS providers to build-in a level of controls and trust in relationships with clients. However, the challenge with SOC 2 reporting is that many SaaS providers are unaware of this reporting and that not having an audit completed can cause significant business damage.

In addition, it is often the SaaS providers’ clients who inquire about SOC 2 reporting, and an “I don’t know” response does not provide clients with the critical assurance that they seek.

Fortunately, there are new tools that help SaaS providers determine their readiness to undergo a SOC 2 security audit and gain a ‘clean opinion.’

As more organizations are seeking support from SaaS providers, we will continue to see the true value of cloud computing emerge for any business sector. Providing the right level of assurance is critical for SaaS providers to further grow their businesses, and the little secret of undergoing a SOC 2 audit is now out of the bag.

Now, is the time to make sure that all of your clients’ data is residing in a truly trusted environment, and there are solutions for meeting this goal.

By Paul L. Shifrin, CPA, is a Director of Audit Services at SC&H Group

Paul directs SC&H’s SOC/SSAE 16 auditing practice, providing companies with audit services for their outsourcing of key components of their clients’ internal controls.

(Image Source: Shutterstock)

About CloudTweaks

Established in 2009, CloudTweaks is recognized as one of the leading authorities in cloud connected technology information and services.

We embrace and instill thought leadership insights, relevant and timely news related stories, unbiased benchmark reporting as well as technology related infographics and comics.

In the meantime, please continue to visit and don't hesitate to reach out to us with questions regarding our consultative services, sponsorship programs or thought leadership opportunities.

Network Function Virtualization (NFV) Technology to Help Enable Service Providers to Manage More Than One Million Devices in Their Networks BARCELONA, MOBILE WORLD CONGRESS – March 1, 2017— With more than 10 billion devices and connections projected by 2020, according to Cisco’s Mobile Visual Networking  Forecast  (2016-2021), service providers will need the scalability and performance to manage the high growth ...
Read More
Achieves Certification to Further Mitigate Risk in Third Party Privacy, Security and Compliance for New and Existing Healthcare Customers SAN ANTONIO – March 1, 2017 – Rackspace® today announced that it has earned Certified status for information security by the Health Information Trust (HITRUST) Alliance for its dedicated environment. With the HITRUST CSFCertified status, the Rackspace Dedicated environment now meets ...
Read More
Amazon’s S3 web-based storage service is experiencing widespread issues, leading to service that’s either partially or fully broken on websites, apps and devices upon which it relies. The AWS offering provides hosting for images for a lot of sites, and also hosts entire websites, and app backends including Nest. The S3 outage is due to “high error rates with S3 ...
Read More
Honda Launches Connected Car Services BARCELONA, Spain (Mobile World Congress) – Honda is leveraging IoT solutions from Cisco Jasper® and Bright Box to deliver the MyHonda Connected Car platform, which provides a suite of powerful services that enhances the driving experience. MyHonda utilizes telematics solutions from Bright Box, powered by the Cisco® Jasper Control Center automated IoT connectivity management platform, ...
Read More
Cisco Jasper Completes NB-IoT Trials BARCELONA, Spain (Mobile World Congress) – In response to demand from an increasing number of companies looking for low cost, low power Internet of Things (IoT) devices to help optimize their businesses and deliver new services, Cisco today announced that Cisco Jasper® has completed live trials of NB-IoT on its Control Center connectivity management platform, ...
Read More

Connecting With Customers In The Cloud

Customers in the Cloud Global enterprises in every industry are increasingly turning to cloud-based innovators like Salesforce, ServiceNow, WorkDay and Aria, to handle critical systems like billing, IT services, HCM and CRM. One need look no further than Salesforce’s and Amazon’s most recent earnings report, ...
Read More