Whenever an organization considers moving systems to the “cloud”, the first question that comes up is: “What about security?” This is an extremely important question and is almost always a showstopper for people new to the cloud. If you move data to the cloud and don’t consider the consequences of not complying with industry and government standards, you could be setting your company up for financial penalties, fines, lawsuits and loss of customers.
Adobe has been delivering cloud solutions for many years and has put a lot of time and money into making sure their products comply with as many standards as possible. To help customers understand how Adobe’s cloud products meet these standards, Adobe has issued a white paper called “Adobe Cloud Services Compliance Overview“. This white paper provides an overview of the currently available standards and regulations such as Service Organizational Control (SOC), ISO 27001, FedRAMP, HIPAA, GLBA (Graham-Leach-Bliley Act) and others.
To help meet the compliance requirements across all of the Adobe Cloud products, Adobe has developed the Adobe Common Controls Framework which is a “set of security activities and compliance controls” they have implemented in their project, infrastructure and application teams. Adobe also uses governance techniques to ensure employees and systems are complying with the controls framework.
As for Adobe’s Cloud products, here is a chart from the white paper that shows whether each product meets various standards.
You can find out more information about Adobe’s security practices on their web site here: http://www.adobe.com/security.html
Security and Compliance in the Adobe Cloud Products
by Mark Polly on June 30th, 2016 | ~ minute read
