COSO Offers Advice on Managing Risks of Cloud Computing

The Committee of Sponsoring Organizations of the Treadway Commission has released a report on how companies can best handle enterprise risk management for cloud computing.

As with any new technology, cloud computing entails commensurate risks, COSO noted. The thought paper provides guidance on following the principles of the COSO Enterprise Risk Management (ERM) – Integrated Framework to assess and mitigate the risks arising from cloud computing.

“The advent of cloud computing is causing executives to revisit how they would like their enterprises to be supported by technology,” said Warren Chan, co-author of the paper and a principal at accounting and consulting firm Crowe Horwath LLP. “Applying COSO’s ERM framework to the business processes being supported by cloud solutions will provide management with a complete view of the associated risks, benefits and risk response options.”

Enterprise Risk Management for Cloud Computing” is the latest in a series of COSO papers providing organizations and ERM practitioners guidance on effective risk management.

“The potential benefits cloud computing can bring an organization are numerous, but they are just part of this unfolding story,” said COSO Chairman David Landsittel in a statement. “This publication builds on COSO’s existing ERM guidance by helping executives incorporate risk management into their cloud strategy, and assisting board members in their oversight role in this emerging area.”

"Enterprise Risk Management for Cloud Computing" can be downloaded for free from COSO’s Web site as well as the Web sites of COSO’s five sponsoring organizations.

For reprint and licensing requests for this article, click here.
Technology Associations
MORE FROM ACCOUNTING TODAY