All Services

From back-end infrastructure to personal productivity, Ergo has the knowledge and experience to match technology to all our client requirements. Our strength is understanding your business. The end goal is always the same, to make businesses more agile and competitive.

More About Our Services
Managed Services

Focus on your core business and leave ICT operations and management to the experts. From 24/7 service desk support to managing hybrid clouds, Ergo have the depth and experience to meet the most demanding service level requirements and ensure continuous improvement. 

More About Managed Services

Highlighted Services

Managed People

Competition for talented technology professionals is huge, which is why we make hiring more personal, taking time to match the right people to the right roles. Our technical experience and recruiting know-how help find the perfect fit for both parties.  

More About Managed People

Highlighted Services

Consultancy Services

Speed of change demands a new generation of digital investments that will drive business enablement and profitability. We support IT leaders, wherever they are on their digital transformation journeys, with our digital assessment methodology. 

More About Consultancy Services

Highlighted Services

Print and Document Solutions

Our goal is to deliver the best possible print and document service for you, leveraging the latest technologies and innovation to ensure the performance of your print environment is optimised to maximise employee productivity.  We take out costs, add efficiencies, wrap it in end-to-end security and make print integral to digital transformation. 

More About Print and Document Solutions

Highlighted Services

Cloud

Agility is key to business success and the cloud is where to get it. We offer a wide range of cloud services – public, private, hybrid – and provide the best of both worlds by integrating or migrating legacy systems to streamline the way your IT is consumed. 

More About Cloud

Highlighted Services

Digital Enablement

Ergo provides a clear roadmap for digital transformation with practical steps to make businesses more agile and customer-centric

More About Digital Enablement

Highlighted Services

Mobility and Collaboration

Ergo has provided many of Ireland’s largest organisations with an ecosystem of mobile applications and collaboration services that drive productivity without compromising on security

More About Mobility and Collaboration

Highlighted Services

Software Licensing

Businesses struggle to manage software assets and don’t always get the best value. We can help streamline your software purchasing, simplify deployments and maximise your investments. 

More About Software Licensing

Highlighted Services

Security, Risk and Compliance

Risks around cyber security and data protection are an ever-increasing challenge for businesses. We provide security lifecycle management, from perimeter testing and threat analysis to mitigating the impact of a breach. 

More About Security, Risk and Compliance

Highlighted Services

Microsoft Technology Specialisations

With the largest team of Microsoft IT professionals in Ireland – including two Most Valuable Professionals our expertise spans a comprehensive portfolio of products/services

More About Microsoft Technology Specialisations

Type your query and press the "Search now" button

Cloud Computing - Is your Data at Risk?

Cloud Computing - Is your Data at Risk?

Read The Article
Cloud Computing - Is your Data at Risk?
Return to Blog

Cloud Computing - Is your Data at Risk?

Cloud computing is one of the fastest-growing areas in IT. With its growth comes heated discussion about the security aspect of cloud computing in comparison to traditional methods of data storage and access.

In this blog, I outline three types of security risks faced by businesses, summarise Windows Azure Security and explain how Azure has the same level of security risk compared to other systems.

Is there a Security Risk with Cloud Computing?

Yes, but only because every device that works based on the rules of bits and bytes connected to the outside world are vulnerable, or at risk all of the time.

What are the Security Risks?

In general there are three main types of security risks:

  1. Infrastructure Related
    This is the core of any IT system security. Hardware and software should be up to date and regularly patched for any vulnerability. The cloud provider should allow users to decide where to keep data based on the regional data protection laws. Cloud infrastructure should be flexible enough to support common data storage formats, so that the user can move data to another provider when needed. The Windows Azure platform fully supports all of the above. 
     
  2. Application Related
    Application related security involves the design of applications and implementing recommended security features, like using authorisation/authentication, secure communication (SSL) between the application and database and also between the end user and the application. The Windows Azure platform itself is running encrypted, but it is always recommended to keep sensitive data encrypted at application level. 
       
  3. End User Related
    User related security risks exist in all types of systems regardless of whether it is cloud based or not. Proper education and procedures are the only option.

Cloud providers not disclosing what type of infrastructure related security systems they are implementing, provides a level of protection as an attacker is always in the dark about the counter measures in place. Most cloud providers do not accept full responsibility of data loss due to an attack, but it is logical to think that they will maintain maximum level of security as their goodwill is dependent on security.

Windows Azure Security

Platform security is more important than application security. Windows Azure has completed SAS 70, Type II audit and has FISMA and ISO 27001 certification. ISO 27001 audits are focused specifically on security practices instead of a general audit of the procedures in place.

Accessing Windows Azure databases involves a two-step procedure; the first step is to give authorisation for a computer IP to access Azure databases, and the second step is the authentication. This prevents unauthorised access to the database systems. Data stored on the platform is encrypted within Windows Azure, so even a breach of their security systems does not make data stored by your application available. Each customer’s data is logically separated onto a different (virtual) volume so it is difficult to access another customer’s data. Also data can be replicated at several locations so catastrophic failure does not imply data loss; it is also possible to restrict the geographic location of your data to comply with potential import/export regulations that the data may fall under. Again, physical access is restricted to their data centres and redundant network and power systems minimise the likelihood of intermittent failures.

What we Learned

In terms of security, cloud computing is not too far away from the in house/third party datacentre methods. In general it has only the same level of security risk compared to other systems. When we consider Microsoft Azure cloud offerings, customers are assured they get the best as per the industry standards, with regard to security and survivability of data.   

To know more about how Microsoft Azure Security can be mapped to the Cloud Security Alliance Cloud Control Matrix (CCM) recommendations, visit https://www.windowsazure.com/en-us/support/trust-center/security/

For a detailed analysis of on premises and cloud related security issue, visit http://www.alertlogic.com/wp-content/uploads/alertlogic%20state%20of%20cloud%20security%20spring2012.pdf

 

 

News and Blog Posts

Go with the Flow: 6 simple steps to implement a Microsoft Flow workflow for Dynamics 365
Juandre Germishuys
20 September 2018 • Posted By Juandre Germishuys Senior Software Developer

Go with the Flow: 6 simple steps to implement a Microsoft Flow workflow for Dynamics 365

In an ever-changing world of automation and end user enablement, Microsoft seem to just keep churning out more and more...

Read now
Finding Your IT Edge: Top Tips to Succeed in any Interview
Patrick Gibney
13 September 2018 • Posted By Patrick Gibney IT Recruitment Specialist

Finding Your IT Edge: Top Tips to Succeed in any Interview

Interviews can be daunting – this is fact. However, what a lot of people don’t realise is that...

Read now
Services in the Sky: Changing Clouds in a Shifting Landscape
News 05 September 2018

Services in the Sky: Changing Clouds in a Shifting Landscape

Read Now
Managed Print Services: A Journey into Detail
News 04 September 2018

Managed Print Services: A Journey into Detail

Read Now
Ergo and Micromail Scoop Two Partner of the Year Awards at Microsoft Inspire
News 20 July 2018

Ergo and Micromail Scoop Two Partner of the Year Awards at Microsoft Inspire

Read Now

Subscribe to Our Blog

Scroll to Top