Abstract

Software as a Service (SaaS) model has been frequently applied in organisation that used cloud services. SaaS is a new Information Technology that provides dynamic services through Internet to the user. Alhough this technology is beneficial and cost-effective for information technology hosting, it also introduced new threats and risks, particularly in user’s information security. The paper identifies risk in data security of the SaaS Model and their respective mitigation control based on ISO/IEC 27001:2013 standard. A qualitative case study was conducted at a public sector agency involving three types of data collection, interviews, observations and document analysis. We identified seven risk of data security for SaaS Model namely data privacy, data integrity, data availability, data control, data encryption, data violation, and data access. The findings can be used to develop SaaS implementation guidelines or policies, particularly in data security.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
DSDOS Cloud: A Decentralized Secure Data Outsourcing System With Hybrid Encryption, Blockchain Smart Contract‐Based Access Control, and Hash Authentication Codes for Cloud Security
K L Neela
Transactions on Emerging Telecommunications Technologies | VOL. 35
K L NeelaK L Neela
01 Nov 2024
DATA PRIVACY AND SECURITY IN IT: A REVIEW OF TECHNIQUES AND CHALLENGES
Oluwatoyin Ajoke Fayayola ... Oluwabukunmi Latifat Olorunfemi
Computer Science & IT Research Journal | VOL. 5
Oluwatoyin Ajoke Fayayola, et. al. Oluwatoyin Ajoke Fayayola ... Oluwabukunmi Latifat Olorunfemi
18 Mar 2024
A Design of Privacy Data Encryption and Decryption System for Data Security in Clouds
Bing Tong ... Wenjuan Cheng
-
Bing Tong, et. al.Bing Tong ... Wenjuan Cheng
01 Jan 2015
Tutorial I: Security and privacy of big data in a cloud environment
Sanjay Kumar Madria
-
Sanjay Kumar MadriaSanjay Kumar Madria
01 Nov 2015
View more papers

More From: Asia-Pacific Journal of Information Technology & Multimedia

Paper Title
Journal
Date
Author
Model of Meaningful Learning Using Social Media in Higher Education Institution
Nurul Shakirah Mohd Zawawi ... Hairulliza Mohamad Judi
Asia-Pacific Journal of Information Technology & Multimedia | VOL. 09
Nurul Shakirah Mohd Zawawi, et. al.Nurul Shakirah Mohd Zawawi ... Hairulliza Mohamad Judi
01 Dec 2020
Orientation and Scale Based Weights Initialization Scheme for Deep Convolutional Neural Networks
Azizi Abdullah ... Wong En Ting
Asia-Pacific Journal of Information Technology & Multimedia | VOL. 09
Azizi Abdullah, et. al.Azizi Abdullah ... Wong En Ting
01 Dec 2020
Information Technology Risk Management for Water Quality Monitoring IoT Infrastructure: A Case Study at Tasik Chini Unesco Biosphere Reserve
Mohamad Shanudin Zakaria ... Ahmad Tarmizi Abdul Ghani
Asia-Pacific Journal of Information Technology & Multimedia | VOL. 09
Mohamad Shanudin Zakaria, et. al.Mohamad Shanudin Zakaria ... Ahmad Tarmizi Abdul Ghani
01 Dec 2020
-
-
Asia-Pacific Journal of Information Technology & Multimedia | VOL. 09
--
01 Dec 2020
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.