Category Archives: Other

Afraid of Floating on Cloud 9? Some Pros and Cons of Cloud Computing

cloud_LOWRES

 

Afraid of Floating on Cloud 9? Some Pros and Cons of Cloud Computing

By Marc Edwards, B.Sc. , PMP, Content Analyticss, bpms, MBA

Are you at the stage within your organization where cloud computing and storage is now a valid tactic to consider to maintain or increase your organization’s competitive advantage? This is obviously a complicated decision since having your data in-house on your own servers gives a sense of security that only proximity can bring.

I came across an article by Carlos Mendible that speak of some of the pros and cons for an organization going to the cloud. Some of the benefits include:

  1. Reduced IT costs: Fewer servers and the staff managing them are needed.
  2. Scalability: In this fast changing world it is important to be able to scale up or down your solutions depending on the situation and your needs without having to purchase or install hardware or upgrades all by yourself.
  3. Business continuity: when you store data in the cloud, you ensure it is backed-up and protected which in turn helps with your continuity plan cause in the event of a crisis you’ll be able to minimize any downtime and loss of productivity.
  4. Collaboration: Cloud services allow you share files and communicate with employees and third-parties in this highly globalized world and in a timely manner.
  5. Flexibility: Cloud computing allows employees to be more flexible in their work practices cause it’s simpler to access data from home or virtually any place with an internet connection.
  6. Automatic updates: When consuming the cloud services, you’ll be using the latest version of the product avoiding the pain and expensive costs associated with software or hardware upgrades.

That being said, some of the perceived cons to moving to the cloud are:

  1. Privacy agreement and service level agreement: You must understand the responsibilities of your cloud provider, as well as your own obligations. In some situations, is your obligation to do configure correctly the service in order to enable the best SLA possible.
  2. Regulatory compliance: Remember that although your data is residing on a provider’s cloud, you are still accountable to your customers for any security and integrity issues that may affect your data and therefore you must know the standards and procedures your provider has in place to help you mitigate your risk.
  3. Location of data: Know the location of your data and which privacy and security laws will apply to it cause it’s possible that your organization’s rights may get marginalized.
  4. Data privacy and security: Once you host confidential data in the cloud you are transferring a considerable amount of your control over data security to the provider. Ask who has access to your sensitive data and what physical and logical controls does the provider use to protect your information.
  5. Data availability and business continuity: How is your organization and the provider prepared to deal with a possible loss of internet connectivity? Weigh your tolerance level for unavailability of your data and services against the uptime SLA.
  6. Data loss and recovery: In a disaster scenario, how is your provider going to recover your data and how long will it take? Be sure to know your cloud provider’s disaster recovery capabilities and if and how they have been tested.
  7. Record retention requirements: If your business is subject to record retention requirements, how well is the cloud provider prepared to suite your needs?
  8. Environmental security: Cloud computing data centers are environments with a huge concentration of computing power, data, and users, which in turn creates a greater attack surface for bots, malware, brute force attacks, etc. Ask: how well prepared is the provider to protect your assets through access controls, vulnerability assessment, and patch and configuration management controls?
  9. Provider lockdown: What is your exit strategy in case your provider can no longer meet your requirements? Can you move your data and operations to another provider’s cloud? Are there technical issues associated with such a change?

I’ve learned that one of the best ways to alleviate fear is to conduct research. So if you are in the position where you need to make a decision about cloud computing, take the time to fully understand the implications. You’ll find that it will be quite worth it.

6 Problems with an “Uber-ized” healthcare

Uber photo

by Marc Edwards, B.Sc., PMP, MBA

In my prior post I talked about some of the opportunities available for an Uber-ization of healthcare. However, there are many obstacles as well that should be considered. Some of these are quite obvious and others not so much. Quickly, here are a few:

1.            Electronic health records (EHRs)

What role would an EHR play in an Uber-ized environment and how will this new Uber-like software interact with the EHR? Will there be much data sharing? If not, this would be a missed opportunity of significant proportions as the amount of data collected will be colossal and could be used to help treat the patient more effectively. Making this information available through an EHR would help facilitate the logistics between this new software, hospitals, and other health providing clinics.

2.            The matter of health insurance

What would be the role of health insurers in this new environment? I imagine that they would not find this new scenario ideal. Logically, this new Uber-ization of healthcare should lower the cost of healthcare overall by increasing the availability and access to healthcare, making health insurance less vital to the average American. Of course, for those of us who live in countries with subsidized healthcare, this is not an issue.

3.            Qualifications

How will the owners of this new software ensure that the health consultants providing medical advice are indeed qualified to do so? As I mentioned in previous posts, it will be a major hurdle to assure the public that this new platform will not be inhibited by quacks and frauds. And how will the software owners confirm that the credentials of the health consultants are accurate? Logistically, this would be a difficult feat indeed.

4.            Prescriptions

What about prescriptions? How does one get a prescription filled for medicine that they desperately need in this new environment? Do we now have to consider electronic prescriptions? The opportunity for misuse would be great in this instance. In addition, the health provider must take into account the patient’s medical history and the prescriptions that they have taken in the past and what they are taking right now, information that could be available in an EHR (see point #1).

5.            Physical diagnoses

And how will physical diagnoses work? Would it be enough just to take a photo of an aliment and send it to the provider? What about those problems that can be diagnosed, in part, by touch? How would that work in an Uber-ized environment?

6.            Privacy & Information Governance

With an Uber-ized healthcare, we will need to address the privacy question. How will our health information do you protected? Do any of the devices used to access this software need to be encrypted? And how will the companies that make these devices manage this? Would the companies by responsible for this or would the consumers of these devices be responsible? Where will the health information be stored? Will the companies housing such information have the appropriate safeguards in place? What will happen in the instance of a privacy breach and who would be responsible? How will the information be protected? Giving the value of health information to the user and a potential hacker, privacy and information governance may prove to be the most important aspect of them all.

Conclusions

While all of these questions may seems daunting, it’s important to realize that technology changes usually come first with the legislation and behavioral changes coming afterwards. Therefore, although an Uber-ized healthcare seems far-fetched and to some, a crazy idea, one shouldn’t be surprised if such a platform is developed within the next few years. The challenge for all of us will be to deal with such a phenomenon when it does occur taking all of the above into consideration. What else should we consider in the event of a new Uber-ized healthcare?