2 April 2012: The EU’s cyber security agency, ENISA, has launched a new, practical guide for IT procurement teams, focusing on continuous security monitoring throughout the life-cycle of a cloud contract. The publication builds on groundwork done by ENISA in 2009, when the Agency produced an assurance framework and tool for IT teams to assess the security of service providers before making a decision to move to the cloud. This follow-up guide details how to monitor the security of cloud services throughout the project life-cycle. The new guide focuses on public procurement, which accounts for nearly 20% of the EU’s gross domestic product, around 2.2 trillion euro (Eurostat figures from 2009).
Full story here.