US and EU Regulations Mandating Multi-Cloud Adoption

Owned by RosettaHub
Apr 21, 2024
2 min read

The dominance of the cloud space by Amazon, Microsoft, and Google, triggered regulators to re-think the risk of a single point of failure or targeted failure to any one of them.  Consequently, regulators have proposed regulations to reduce operational risk and increase cloud resilience via diversification. 

Regulators were clear that multi-region or multi-zone architecture is not sufficient.  A multi-vendor cloud offering ensures freedom from a single vendor lock-in or control over a sector.    Regulation compliance is expected as early as beginning of 2025.

In the EU, the Data Act and the Digital Markets Act are two regulatory files particularly relevant to the recent focus on competition and customer protection in the cloud market.  However, US and UK companies operating in the EU must comply with the EU's Digital Operational Resilience Act (DORA) starting early 2025. DORA multi-cloud pitch is a business necessity rather than a technical nice-to-have.

The CMA is closely inspecting aspects, including discounted pricing and egress fees, and the Federal Trade Commission is itself dealing with a complaint from Google about anti-competitive behavior from Microsoft. ®

The U.S. Department of Defense is moving towards a multi-cloud environment with the introduction of the Joint Warfighting Cloud Capability Contract or JWCC. DoD mandated that all future cloud buys must use JWCC upon existing cloud expiration.  This cancels the old single-source vendor contracts JEDI (Joint Enterprise Defense Infrastructure). 

Similarly, the US Congress is adopting a bill Multi-Cloud Innovation and Advancement Act of 2023 to allow digital assets the usability, and interoperability among multiple cloud computing vendors and between public, private, and edge cloud environments in a manner that securely delivers operational and management consistency, comprehensive visibility, and resiliency.  The multi-cloud practice grants the financial sector  “strategic agility and operational resilience” .

The RosettaHub SuperCloud solution:

Despite the awakening of the regulatory bodies with new mandates and regulations. The question remains as how to operationally achieve the three key mandates:

  1. no lock-in into any cloud vendor. 

  1. Ease of moving digital assets from one vendor to another

  1. Clear governance and transparency controls of cloud vendors

RosettaHub Supercloud is the solution of choice to meet both US and EU regulations.   Are you compliant ready to do business in a multi-cloud mandate?    

https://www.rosettahub.com/site/