The Committee of Sponsoring Organizations of the Treadway Commission has released a report on how companies can best handle enterprise risk management for cloud computing.
As with any new technology, cloud computing entails commensurate risks, COSO noted. The thought paper provides guidance on following the principles of the COSO Enterprise Risk Management (ERM) – Integrated Framework to assess and mitigate the risks arising from cloud computing.
“The advent of cloud computing is causing executives to revisit how they would like their enterprises to be supported by technology,” said Warren Chan, co-author of the paper and a principal at accounting and consulting firm Crowe Horwath LLP. “Applying COSO’s ERM framework to the business processes being supported by cloud solutions will provide management with a complete view of the associated risks, benefits and risk response options.”
“
“The potential benefits cloud computing can bring an organization are numerous, but they are just part of this unfolding story,” said COSO Chairman David Landsittel in a statement. “This publication builds on COSO’s existing ERM guidance by helping executives incorporate risk management into their cloud strategy, and assisting board members in their oversight role in this emerging area.”
"Enterprise Risk Management for Cloud Computing" can be downloaded for free from