Abstract
The concepts of cloud computing and the use of Big Data have become two of the hottest topics in the world of corporate information systems in recent years. Organizations are always interested in initiatives that allow them to pay less attention to the more mundane areas of information system management, such as maintenance, capacity management, and storage management, and free up time and resources to concentrate on more strategic and tactical issues that are commonly perceived as being of higher value. Being able to mine and manipulate large and disparate datasets, without necessarily needing to pay excessive attention to the storage and management of all the data that are being used, sounds in theory like an ideal situation. A moment’s consideration reveals, however, that the use of cloud computing services, like the use of outsourcing facilities, is not necessarily a panacea. Management will always retain responsibility for the confidentiality, integrity, and availability of its applications and data, and being able to develop the confidence that these issues have been addressed. Similarly, the use of Big Data approaches offers many advantages to the creative and the visionary, but such activities do require an appropriate understanding of risk and control issues.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Marr, B.: Is This the Ultimate Definition of “Big Data” ?, http://smartdatacollective.com/node/128486 (accessed September 2, 2013)
Bojilov, M.: Big Data Defined. In: ISACA Now (2013), http://www.isaca.org/Knowledge-Center/Blog/Lists/Posts/Post.aspx?ID=299 (accessed September 2, 2013)
Manyika, J., Chui, M., Brown, B., Bughin, J., Dobbs, R., Roxburgh, C., Hung Byers, A.: Big data: the next frontier for innovation, competition and productivity. McKinsey Global Institute, Washington DC (2011)
Blumberg, R., Atre, S.: The Problem with Unstructured Data. DM Review (2003)
National Institute of Standards and Technology. The NIST Definition of Cloud Computing. Special Publication 800-145, NIST, Gaithersburg (2011)
Committee of Sponsoring Organizations of the Treadway Commission. Guidance on Monitoring Internal Control Systems. AICPA, New York (2009)
Krutz, R., Vines, D.: Cloud Security: A Comprehensive Guide to Secure Cloud Computing. Wiley Publishing Inc., Hoboken (2010)
Internal Standards Organization. ISO/IEC 27001 Information Technology - Security Techniques – Information Security Management Systems. ISO/IEC, Geneva (2005)
National Institute of Standards and Technology, Information Security. Special Publication 800-100. NIST, Gaithersburg (2006)
Parker, D.: Toward a New Framework for Information Security. In: Bosworth, S., Kabay, M. (eds.) Computer Security Handbook, 4th edn. John Wiley & Sons, New York (2002)
Organisation for Economic Co-operation and Development (2002) OECD Guidelines for the Security of Information Systems and Networks: Towards a Culture of Security, http://www.oecd.org/sti/ieconomy/15582260.pdf (accessed January 8, 2014)
Adolph, M.: Distributed Computing: Utilities, Grids and Clouds. ITU-T Technology Watch Report 9, ITU, Geneva (2009)
Gantz, J., Reinsel, D.: Extracting Value from Chaos. IDC iView (2011)
Information Systems Audit and Control Association, Big Data: Impacts and Benefits. ISACA, Chicago (2013)
Bittman, T.: A Better Cloud Computing Analogy. Gartner Blogs (2009), http://blogs.gartner.com/thomas_bittman/2009/09/22/a-better-cloud-computing-analogy/ (accessed January 8, 2014)
Information Systems Audit and Control Association, Security Considerations for Cloud Computing. ISACA, Chicago (2012)
Ghernaouti-Hélie, S., Tashi, I., Simms, D.: Optimizing security efficiency through effective risk management. Paper presented at the 25th IEEE International Conference on Advanced Information Networking and Applications (AINA 2011), Biopolis, Singapore, March 22-25 (2011)
American Institute of Certified Public Accountants, Quick Reference Guide to Service Organizations: Control Reports. AICPA, New York (2012)
American Institute of Certified Public Accountants, Service Organizations: Reporting on Controls at a Service Organization Relevant to User Entities’ Internal Control over Financial Reporting Guide. AICPA, New York (2011)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer International Publishing Switzerland
About this chapter
Cite this chapter
Simms, D. (2015). Big Data, Unstructured Data, and the Cloud: Perspectives on Internal Controls. In: Xhafa, F., Barolli, L., Barolli, A., Papajorgji, P. (eds) Modeling and Processing for Next-Generation Big-Data Technologies. Modeling and Optimization in Science and Technologies, vol 4. Springer, Cham. https://doi.org/10.1007/978-3-319-09177-8_13
Download citation
DOI: https://doi.org/10.1007/978-3-319-09177-8_13
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-09176-1
Online ISBN: 978-3-319-09177-8
eBook Packages: EngineeringEngineering (R0)