Cloud security strategies: In the land of the blind, the one eyed man is king

(c)iStock.com/Kalawin

New research released today by enterprise cloud hosting provider iland has revealed almost half (47%) of security workers “simply trust” their cloud providers to meet security agreements.

The findings, from 100 IT decision makers and security experts, appear in a study whose title – ‘Blind Trust is Not a Security Strategy: Lessons from Cloud Adopters’ – lays the problem on thick. Even though 78% of firms polled are using the cloud in some capacity, and more than half (56%) of respondents say security technology is more consistently applied in the cloud, the report insists vendors need to do more to keep things safe.

This will not come as a major surprise to regular readers of this publication, with a study released in June last year from iland saying largely the same thing. Back then, the finger was pointed at rogue vendors not sharing metadata with customers. Customers, ranging from one third to half of respondents, had various concerns over how closely their provider looks after them – the idea that they were ‘just another account number’.

Customers are not immune either however; the research also found a ‘significant’ gap in IT understanding of compliance requirements, with 96% of security professionals admitting their firms have compliance-related workloads in the cloud compared to just 69% of IT teams. David Monahan, research director of security and risk management at Enterprise Management Associates, who conducted the study with iland, argues a lack of staff and skills are holding firms back. “Companies can no longer combat security threats by simply throwing technology at perceived vulnerabilities,” he said.

On the plus side, business and IT are more likely to be on the same page with regard to cloud security, and if IT is reluctant to push a new application because of security fears. iland calls this a ‘fundamental shift in dynamics’, yet Monahan added: “While IT has made monumental progress in identifying and adopting necessary security technologies, cloud providers must do more to ensure teams can easily validate claims, manage disparate tools, anticipate threats and take action when needed.”

Related Stories

Leave a comment

Alternatively

This will only be used to quickly provide signup information and will not allow us to post to your account or appear on your timeline.

Cristopherburge
28 Jun 2016, 1:03 p.m.

Cloud security is still a work in progress. What many business owners/ IT departments don’t understand is that a cloud solution needs to be customized. There is no “one shape fits them all” type of situation when it comes to cloud services meant for businesses and enterprises. To get a glimpse of the current cloud security situation, there was a survey made by Ipswitch File Transfer that questioned 555 IT specialists. It was showed that 61% were working with poorly secured cloud storage services. So, based on the importance of security, a 555 people survey says much about the people that are handling your daily data. More details about the survey and how to create a security strategy can be found here http://www.cloudstorage101.com/cloud-storage-security-it-companies/

Reply