Securing Google Apps: One CIO's Story

Hear from the CIO of Boston-based Bay Cove Human Services about moving applications to the cloud -- and learn how he handles security in a regulated environment like social services.

By Joan Goodchild
Mon, May 16, 2011
. What's this?

CSO — Boston-based Bay Cove Human Services is a non-profit organization that offers assistance and service to 4,000 people and families in Massachusetts. CIO Hilary Croach has several technology challenges to contend with. For starters, the agency has its hands in a number of service areas, including helping individuals with developmental disabilities, mental illness, drug and alcohol addiction, and those who need support with aging. With about 140 locations around Eastern Massachusetts, Bay Cove's employees and IT operations are scattered.

Learn more about cloud computing and security

* Cloud security predictions for 2011

* Hybrid cloud security: Real-world tales

* Cloud security: 4 examples

* Why security pros hate Sharepoint and what to do about it

Because of the expansive nature of his users, Croach decided to take some applications into the cloud with Google (GOOG) Apps for Business. But Bay Cove is subject to a number of regulations, including HIPAA, so the move to the cloud wasn't done without extreme consideration with regard to access control and privacy. Croach recently detailed for CSO why he felt Google Apps tools were the right fit for his agency, and how he handles security in a regulated environment like social services.

CSO: How did you first become interested in using Google Apps for Bay Cove?

Hilary Croach: We had an email platform we had used for fourteen years. It was a great platform when we first got it. But, in recent years, it became clear it wasn't being updated, it wasn't connecting in with mobile devices, so we couldn't continue with it for our email platform. We looked at Exchange and the idea of hosted solution was on the table. We have about 1600 users. When I looked at Exchange implementation from the ground up, I was talking about a $100,000-capital investment, and that was with the relatively-cheap licensing that Microsoft (MSFT) offers to non-profits. But Google, for non-profits of our size, offers Google Apps for free. That was a huge deal for me.

Now, of course using Google Apps means it's not in my data center. And there are concerns about security if it's not in my data center. But we quickly became pretty confident that the email and calendar piece of the Google Apps suite would work as well and be as secure as our previous email system for internal communications - and we were clear that sending an email out of any system is pretty much unsafe unless you have encryption tools and so forth. So we made the move.

Continue Reading

Originally published on www.csoonline.com. Click here to read the original story.
What is Tech Briefcase?
TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more
Bookmark content
Speed up your research efforts with content across the web.
Search and Store
Find the white papers you need. Create folders for any topic.
View Anywhere
Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.
Don't have an account yet?
White Papers »
ESG Lab Review: HP 3PAR Peer Motion Software
This ESG Lab review sponsored by HP + Intel documents hands-on testing of HP 3PAR Peer Motion Software's distributed volume.

Intel and the Intel logo are trademarks of Intel Corporation in the U.S. and/or other countries.
A Primer on Cloud or SaaS Solutions
Most software providers tout some version of Cloud, or SaaS systems, leading to confusion about the solution models. This paper defines the terms, describes how to tell the difference between true SaaS and SaaS pretenders, and outlines the model's short- and long-term benefits.
Six Game Changers about Cloud, or SaaS, Solutions
Plex Online Cloud ERP is an innovative approach to manufacturing software. This paper summarizes its six game-changing characteristics, including ERP integration; ease of use; and continually enhanced, up-to-date functionality.
5 Things Your Software Development Teams Should be Doing Now
In this ever-changing world of software development, it's critical to keep up with technologies, methodologies and trends. Discover five tested and proven software development practices your team should be utilizing to accelerate software delivery.
Beyond Simple Total Cost of Ownership
When considering new applications, the question has changed from "Build or Buy?" to "Buy or Rent?" This free paper analyzes the implications and costs of purchasing and implementing cloud-based software (SaaS) vs. traditional on-premise software.
SF ROX: Investing in Execution Pays Dividends
Over a three-year timeframe, a broad sampling of SuccessFactors customers outperformed the NASDAQ and S&P 500 indices by a wide margin. Get this informative study and learn how Business Execution Software helped them achieve such great results.
Webcasts »
On-demand webinar: Industrializing Agile Software Delivery with ALM 2.0+
IT departments have increased developer productivity, saved millions, and realized governance by implementing DevOps. ALM 2.0+ fosters integration with operations and accepts tool and platform heterogeneity, helping FT1000 customers worldwide transitioning to DevOps.
5 Things Your Software Development Teams Should be Doing Now
This webinar will cover five tested and proven software development practices that your team should be utilizing right now to accelerate software delivery.
Leverage automation today to reduce IT complexity
Date: Tuesday, June 5, 2012, 2:00 PM EDT

Whether your B2B complexity is caused by multiple technologies due to M&A, business or application specific needs or traditional under investment, the net effect is usually the same: high cost and lower productivity. Enabling business-to-business (B2B) integration using point-to-point EDI translators is usually time intensive and cost prohibitive.

Join IDC's Maureen Fleming and SAP for an insightful Webcast on the different approaches companies are taking to B2B integration and how you can ask the right questions to reassess you B2B approach.
Delivery Management -- Extending Lifecycle Management
Date: Wednesday, June 20, 2012, 1:00 PM EDT

Siloed organizations continue doing the wrong things and doing things wrong, leading to increased costs, project delays, lower quality, and time-to-market delays. Providing a collaborative platform where the whole organization can prioritize, share and manage deliveries with more transparency can help the organizations make more informed decisions at all levels, and greatly improve communications and traceability between teams. Hear from application lifecycle management experts how to increase delivery efficiency and effectiveness with a new approach to Delivery Management.
Operational Analytics - Changing the Competitive Dynamics of the Business
Date/Time: June 5, 2012, 11:00 a.m., EDT, 4:00 p.m. BST / 3:00 p.m. UTC

Please join us for this webcast, as Dr. Barry Devlin, Founder and Principal, 9sight Consulting, describes what operational analytics can do for your business and reviews an architectural approach that will enable you to make it a reality.
BMC Control-M - Single Point of Control Demo
With BMC Control-M, you schedule and manage everything - down to the very last platform and application - from one simple interface. It's the foundation of workload automation, really - the ability to run application and business processes as one. Siloed job schedulers can't do it. BMC Control-M can.
Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter
  11. View all Newsletters | Privacy Policy
White Papers » All White Papers

ESG Lab Review: HP 3PAR Peer Motion Software

A Primer on Cloud or SaaS Solutions

Six Game Changers about Cloud, or SaaS, Solutions

5 Things Your Software Development Teams Should be Doing Now

Beyond Simple Total Cost of Ownership

SF ROX: Investing in Execution Pays Dividends

SaaS: Now Serving Large Complex Companies

Shape Your Apps Strategy to Reflect New SaaS Licensing and Pricing Trends by Forrester Research

Global at the Core: The Business and Technology Benefits of Workday's Global Approach to Enterprise Applications

SaaS: Now Serving Large Complex Companies

SaaS ERP: A Viable Model for Job Shops and Small Manufacturers

Simplify SSL Certificate Management Across the Enterprise

Mobile Middleware Strategies

Native & HTML5 Mobile Apps: Not an either or, but a where and when

The Evolution of Enterprise Mobile App Development

AlertBoot Case Study

Gilt Groupe Case Study

See Tickets Case Study

STA Travel Case Study

Socialbomb Case Study
Sponsored Links

High performance. Delivered. Click to see Accenture's client successes

Master the cloud with the power of convergence from HP

Connect with IT leaders redefining mobility at the Enterprise Mobile Hub

Choose New and manage one device instead of 170

Choose New for 8x the firewall and NAT performance

Check out a smart way of mobilizing your business with enterprise-ready Samsung Mobile.

Redefine your data center with HP servers.

Enhance your business with Windstream IT Solutions. Speak to someone local.

BlackBerry® Mobile Fusion. Different mobile devices. One platform.

CYBERMARYLAND | Learn Why Maryland is the Epicenter for Cybersecurity

Get Ethernet speeds from 1 Mbps to 10 Gbps - Comcast Business Class

Cognizant. Leading in Business, Application & Technology Services

Collaboration: driving better business outcomes

Gain cutting-edge insights at MIT in 2-5 day executive programs.

Click to see how Accenture has delivered high performance to clients

Complimentary Gartner Report on BYOD: Media Tablets & Beyond. View Now

Elevate storage agility and efficiency with HP 3PAR storage.

Choose New and slash the number of devices you manage

Customized information views & Twitter events at New Fulcrum Point

Splunk translates machine data into "aha" moments for IT and the business.

ManageEngine Desktop Central - Automate and Audit Your Desktop Management! Learn More...

Cloud Readiness Starts with Intel® Technology

Visit the Virtually There Learning Page to learn how to use virtualization to your competitive advantage.

Free: Hunter Muller's "The Transformational CIO."

Join us for an upcoming Microsoft 365 live online demo event.

Discover your easiest path to unified communications

Virtualizing Your Infrastructure Just Got Easier

Connect with global CIOs now at Enterprise CIO Forum

Resource Center
buy a link »
Ads by TechWords