Welcome!

@CloudExpo Authors: Elizabeth White, Rene Buest, Liz McMillan, Mehdi Daoudi, Astadia CloudGPS

Related Topics: @CloudExpo, Java IoT, Cloud Security

@CloudExpo: Blog Feed Post

How to Embrace Cloud Billing Safely By @AriaSystemsInc | @CloudExpo [#Cloud]

How can you capitalize on the cloud’s tantalizing advantages while minimizing risk?

The benefits of cloud billing can be irresistible. Always-on availability, flexibility, elastic scalability, low cost, global reach. But with high-profile security breaches from the likes of Target, Sony and health insurer Anthem, it's understandable that thinking about turning your billing system over to the cloud could give you the willies. How can you capitalize on the cloud's tantalizing advantages while minimizing risk? Here are three things to look for in a cloud billing system you can trust.

holding_cloud

  1. Security and privacy certifications. The first thing to assess in a cloud billing system is the extent to which it complies with industry standards for protecting credit card data and customer privacy. Depending on your security needs, you may want your vendor to be certified in some or all of the following:
  • PCI-DSS: The comprehensive Payment Card Industry Data Security Standard provides detailed guidance on such aspects as vulnerability testing, data encryption, access control and security policies. A more rigorous version of the standard (v3.0) officially went into effect only last month, so go with a proactive cloud-billing vendor that's been following its prescriptions for far longer.
  • SSAE 16 (Statement on Standards for Attestation Engagements) Type II: This certification attests that data used in financial reports meets stringent security, auditing and operational requirements. To survive audits unscathed, consider SaaS billing providers whose data centers have this certification.
  • EU Safe Harbor: If you do business internationally, you'll want your cloud billing vendor to be certified in the European Union's Safe Harbor Principles, which safeguard customers' personal data.
  • HIPAA (Health Insurance Portability and Accountability Act of 1996): This certification is designed to protect patient privacy and security. It initially applied only to hospitals, doctors, dentists, pharmacies, HMOs and other health care providers. But since 2013, it's now required of any company who handles protected health information (PHI) at any point. Accountants, physical therapists, data storage firms - even software companies that process data from wearable medical devices. In short, HIPAA compliance is rippling out to an ever-widening arena of companies.When you select a cloud-billing vendor with HIPAA certification, such as Aria Systems, you can take full advantage of the diverse payment schemes sweeping health services while meeting your obligations under HIPAA.
  • Third-party certifications: Certifications from industry experts like TRUSTe, a global leader in Data Privacy Management (DPM), provide independent verification that the cloud billing solution you select meets exceptional standards for security, privacy and transparency.
  1. Security best practices. For many companies, the security provided by the best SaaS billing vendors is more than adequate for their needs. And in many cases, the security best practices these vendors follow can be more thorough and cost-efficient than the labor-intensive security measures on-premise systems require. For example, top cloud billing providers conduct ongoing vulnerability scanning and offer transparent upgrades and security patches for the latest the viruses and malware - activities that demand specialized expertise many enterprises may not have to spare, or even have at all.
  1. Deployment flexibility. Most cloud billing providers offer only public, multi-tenant cloud environments. While that may work well for lots of companies, certain industries, such as global finance, have tighter security restrictions. So select a vendor who can offer a complete range of deployment options to match your needs - multi-tenant, single-tenant, pubic or private cloud and even hybrid environments that give you the best of both worlds: the versatility of the cloud with the heightened security of on-premise systems.

Finally, remember to pull your own weight

All billing systems carry some level of risk, whether they're in the cloud or down the hall. A vendor who employs the most rigorous security measures available can help you profit from cloud billing with confidence and peace of mind. But you must still do your share. That means being smart in your use of passwords, choosing wisely about who gets administrative privileges and instilling a culture of security awareness throughout your organization.

Sean Kirk

The post How to Embrace Cloud Billing Safely appeared first on Recurring Revenue Blog | Aria Systems.

Read the original blog entry...

More Stories By Aria Blog

The Aria blog is the place for news, commentary and discussion on monetization, agile billing and IoT. We cover a variety of topics including forces of market disruption, the Monetization of IoT, billing best practices, trending news and what monetization will look like in the future. Our hope is that you’ll become better informed, be entertained and in turn share your thinking, ideas and comments.

@CloudExpo Stories
"We're here to tell the world about our cloud-scale infrastructure that we have at Juniper combined with the world-class security that we put into the cloud," explained Lisa Guess, VP of Systems Engineering at Juniper Networks, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"With Digital Experience Monitoring what used to be a simple visit to a web page has exploded into app on phones, data from social media feeds, competitive benchmarking - these are all components that are only available because of some type of digital asset," explained Leo Vasiliou, Director of Web Performance Engineering at Catchpoint Systems, in this SYS-CON.tv interview at DevOps Summit at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
Your homes and cars can be automated and self-serviced. Why can't your storage? From simply asking questions to analyze and troubleshoot your infrastructure, to provisioning storage with snapshots, recovery and replication, your wildest sci-fi dream has come true. In his session at @DevOpsSummit at 20th Cloud Expo, Dan Florea, Director of Product Management at Tintri, provided a ChatOps demo where you can talk to your storage and manage it from anywhere, through Slack and similar services with...
As enterprise cloud becomes the norm, businesses and government programs must address compounded regulatory compliance related to data privacy and information protection. The most recent, Controlled Unclassified Information and the EU’s GDPR have board level implications and companies still struggle with demonstrating due diligence. Developers and DevOps leaders, as part of the pre-planning process and the associated supply chain, could benefit from updating their code libraries and design by in...
"Peak 10 is a hybrid infrastructure provider across the nation. We are in the thick of things when it comes to hybrid IT," explained Michael Fuhrman, Chief Technology Officer at Peak 10, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
SYS-CON Events announced today that Calligo, an innovative cloud service provider offering mid-sized companies the highest levels of data privacy and security, has been named "Bronze Sponsor" of SYS-CON's 21st International Cloud Expo ®, which will take place on Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Calligo offers unparalleled application performance guarantees, commercial flexibility and a personalised support service from its globally located cloud plat...
"We are an IT services solution provider and we sell software to support those solutions. Our focus and key areas are around security, enterprise monitoring, and continuous delivery optimization," noted John Balsavage, President of A&I Solutions, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We were founded in 2003 and the way we were founded was about good backup and good disaster recovery for our clients, and for the last 20 years we've been pretty consistent with that," noted Marc Malafronte, Territory Manager at StorageCraft, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
There is a huge demand for responsive, real-time mobile and web experiences, but current architectural patterns do not easily accommodate applications that respond to events in real time. Common solutions using message queues or HTTP long-polling quickly lead to resiliency, scalability and development velocity challenges. In his session at 21st Cloud Expo, Ryland Degnan, a Senior Software Engineer on the Netflix Edge Platform team, will discuss how by leveraging a reactive stream-based protocol,...
"We are focused on SAP running in the clouds, to make this super easy because we believe in the tremendous value of those powerful worlds - SAP and the cloud," explained Frank Stienhans, CTO of Ocean9, Inc., in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"DivvyCloud as a company set out to help customers automate solutions to the most common cloud problems," noted Jeremy Snyder, VP of Business Development at DivvyCloud, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
DevOps at Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to w...
"As we've gone out into the public cloud we've seen that over time we may have lost a few things - we've lost control, we've given up cost to a certain extent, and then security, flexibility," explained Steve Conner, VP of Sales at Cloudistics,in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
Internet of @ThingsExpo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devic...
"The Striim platform is a full end-to-end streaming integration and analytics platform that is middleware that covers a lot of different use cases," explained Steve Wilkes, Founder and CTO at Striim, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We want to show that our solution is far less expensive with a much better total cost of ownership so we announced several key features. One is called geo-distributed erasure coding, another is support for KVM and we introduced a new capability called Multi-Part," explained Tim Desai, Senior Product Marketing Manager at Hitachi Data Systems, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
21st International Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, will feature technical sessions from a rock star conference faculty and the leading industry players in the world. Cloud computing is now being embraced by a majority of enterprises of all sizes. Yesterday's debate about public vs. private has transformed into the reality of hybrid cloud: a recent survey shows that 74% of enterprises have a hybrid cloud strategy. Me...
SYS-CON Events announced today that DXWorldExpo has been named “Global Sponsor” of SYS-CON's 21st International Cloud Expo, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Digital Transformation is the key issue driving the global enterprise IT business. Digital Transformation is most prominent among Global 2000 enterprises and government institutions.
SYS-CON Events announced today that Datera, that offers a radically new data management architecture, has been named "Exhibitor" of SYS-CON's 21st International Cloud Expo ®, which will take place on Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Datera is transforming the traditional datacenter model through modern cloud simplicity. The technology industry is at another major inflection point. The rise of mobile, the Internet of Things, data storage and Big...
Kubernetes is an open source system for automating deployment, scaling, and management of containerized applications. Kubernetes was originally built by Google, leveraging years of experience with managing container workloads, and is now a Cloud Native Compute Foundation (CNCF) project. Kubernetes has been widely adopted by the community, supported on all major public and private cloud providers, and is gaining rapid adoption in enterprises. However, Kubernetes may seem intimidating and complex ...