Cloud Migration and Security
Case Study of Rabobank
A. Purwar (TU Delft - Technology, Policy and Management)
Seda Gürses – Mentor (TU Delft - Organisation & Governance)
Robert Verburg – Graduation committee member (TU Delft - Economics of Technology and Innovation)
Oka Arntzen – Coach (Rabobank)
More Info
expand_more
Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.
Abstract
Cloud computing is one of the state-of-the-art technologies that has led to considerable transformations in an organization. Because of its numerous benefits like scalability, cost-efficiency, and security many organizations are migrating to the cloud. However, the process of migration is complex and faces numerous challenges. This includes numerous technical and non-technical challenges that impact the security of the organization. This study revealed a considerable research gap in the literature using the people, process and technology framework. The gap revealed that researchers and organizations focus mainly on technical challenges and weigh in the security risks triggered by them. The non-technical challenges like lack of resources, knowledge sharing, limited stakeholder management are overlooked. This study showed that these issues could also cause security risks like data loss, vulnerable systems, and unauthorized access to systems and data in the migration process. Therefore, the concept was designed by prioritizing the requirements from these non-technical challenges. Four essential features were discussed as a part of the solution: knowledge base, information centre, planning & stakeholder management, and learning. The suggested concept was evaluated and showed that organizations need to enable knowledge sharing, open feedback and stakeholder management in the initial phase of migration to mitigate security risks from the beginning.