Threat actors are well-aware of the vulnerability of our cloud infrastructure. The internet we have today is not equipped to serve the data needs of the future. When data is stored in the cloud, it can end up across several servers anywhere in the world. If one of these computers is compromised, your data can be stolen or misused.
Therefore, when you create an information system, either on-premises or in the cloud, one of the first things you need to do is identify where your sensitive information is stored. When you store your data in the cloud, securing your information is a shared responsibility between you and your cloud provider.
Since cloud security implies a shared responsibility between the customers and the cloud provider, IT teams and decision-leaders must have a clear understanding of the types of cloud services more vulnerable to cyberattacks. Another security consideration that emerges when businesses are moving their information system to the cloud is identifying the cases where the risks outweigh the rewards.
The cloud gives an opportunity to create large amounts of infrastructure quickly and easily, which leaves it exposed to the possibility of substandard security configurations being applied to it. Because of the ease of use of cloud services, companies might become negligent in terms of their security.
How a cloud infrastructure is configured impacts its cybersecurity risk. This stage of your cloud deployment is where cloud security posture management (CSPM) is needed: this tool looks at the configurations of your cloud estate to spot common mistakes. A product such as CWPP cloud workload protection platform is also recommended so you can look at the internal security aspects of your cloud platform.
Together these tools are often referred to as CNAPP cloud-native application protection platform.
Common security lapses such as security teams leaving remote desktop protocols open to the internet can also cause security issues. For example, the wormable BlueKeep vulnerability affecting Microsoft Windows (CVE-2019-0708) led to the remote execution of random code in remote desktop services, without any user doing anything, which increased the risk of malware propagating itself between vulnerable systems.
Overall, as cloud infrastructures rely more heavily on the internet, they need protection that might differ from your on-prem security requirements.
The UK National Cyber Security Centre set out 14 cloud security principles to help businesses of different sizes balance their needs to configure cloud services securely.
Vendor lock-in can be a common issue for businesses. Cloud vendors will give you all the tools to make your life easier, but getting out of their systems if you decide to stop working with them will be really difficult if you rely too much on their infrastructure.
Beyond the technological risks, another deciding factor is the general trust toward cloud providers and the hyperscalers such as AWS or Google, who can provide public and hybrid cloud services to large enterprise networks.
Flexibility and the ability to configure your set-up to your specific needs could be lost on the cloud. If you are running on-premises, you have more flexibility to reconfigure things. Your commercial relationship with your cloud provider will dictate how flexible you can be with your cloud infrastructure, which can prevent you from fixing unsafe issues as they come. How much control and flexibility you want on your data storage should impact your cloud set-up.
One advantage of cloud services is that they are very easy to deploy, but this can create a multitude of problems for security professionals. So many nodes are open within the cloud infrastructure, which can increase the threat surface. A few strategies can alleviate this risk, such as encryption, security authentication, and access control policy.
Another issue is making sure that customer data is safe within a cloud environment. Storage security in cloud computing involves data isolation and recovery. Storing your customer data in the cloud does not relieve you of all responsibilities: while the cloud provider is responsible for the security of their infrastructure, businesses must be responsible for the monitoring and auditing of the data.
Who controls what and who is responsible for what is often a point of contention. To solve this, organizations need to have clear responsibilities and accountability structures.
Without careful planning, it can be easy to duplicate efforts when it comes to your cloud infrastructure. For instance, I came across a lot of businesses that individually built web application firewalls and next-gen firewall policies for each cloud provider. This aproach risks leaving gaps in the security policy, as different platforms may not offer equal levels of protection.
Cloud computing has often been heralded as a cost-cutting and convenient solution, enabling organizations to store, collect, and retrieve large volumes of data. However, the convenience provided by cloud computing depends on the risk exposure your organization is willing to accept.
Chief among these risks is the reliance on a third-party provider to store business data, which enhances privacy and security concerns.
Understanding your cloud infrastructure and where your data is stored is the first step towards enjoying the myriad benefits of cloud computing while balancing the risks.
When implementing a multi-cloud infrastructure, retaining an element of security and control of all your cloud services will be key to mitigating your risk exposure.
The cloud environment has fewer constraining perimeters, and this has many benefits for organizations, but also increases the complexity of understanding what is covered by your infrastructure. Building a good appreciation of what parts of your organization are exposed to the internet is essential in your efforts to secure your data.
Other cloud security strategies include data security, administration and control, network security, zero trust principles, and compliance all of which should make cloud environments more secure and robust.
By carefully planning and considering your cloud infrastructure as part of your organizations overall security posture, implementing appropriate policies and controls, and working with cloud providers that prioritize security as standard, your business can safely enjoy the benefits of cloud computing.
From the customers perspective, regardless of the cloud model that you are using, you are never without some responsibility for securing your data. Being aware of the varying level of vulnerability is essential in balancing the convenience of the cloud with your cybersecurity defenses.
Read the original post:
Cloud security: Sometimes the risks may outweigh the rewards - Help Net Security
- 5 Questions Schools Should Ask Before Selecting a Cloud Security Platform - EdTech Magazine: Focus on K-12 - December 8th, 2023 [December 8th, 2023]
- Marvell Extends Connectivity Leadership for Accelerated Computing With Two Cloud-Optimized PAM4 Optical DSPs - PR Newswire - December 8th, 2023 [December 8th, 2023]
- Commission green lights state-aid partnership for cloud computing - Research Professional News - December 8th, 2023 [December 8th, 2023]
- EU approves 1.2 billion to boost local cloud - Computing - December 8th, 2023 [December 8th, 2023]
- How organizations can learn from cloud security breaches - TechTarget - December 8th, 2023 [December 8th, 2023]
- EU provides 1.2 billion euros for European cloud computing project - Notebookcheck.net - December 8th, 2023 [December 8th, 2023]
- Highlights from Gartner IT IOCS Conference 2023, Las Vegas - Gartner - December 8th, 2023 [December 8th, 2023]
- The EU just launched a 1.2 billion cloud project to crack US dominance - ITPro - December 8th, 2023 [December 8th, 2023]
- CoreWeave backed by Fidelity and Jane Street at $7 billion valuation as cloud provider bolsters status as one of AIs hottest startups - Fortune - December 8th, 2023 [December 8th, 2023]
- Insurtechs using AI, ML and cloud computing. - Digital Insurance - December 8th, 2023 [December 8th, 2023]
- Broadcom to divest VMware's end-user computing and Carbon Black units - The Register - December 8th, 2023 [December 8th, 2023]
- Australia building 'top secret' cloud to catch up and link with US, UK intel orgs - The Register - December 8th, 2023 [December 8th, 2023]
- CORRECTION-Nvidia in talks with Malaysia's YTL on data center deal- sources - Yahoo Eurosport UK - December 8th, 2023 [December 8th, 2023]
- NCS announces strategic partnership with Google Cloud to accelerate digital transformation in Asia Pacific, ETCIO SEA - ETCIO South East Asia - December 8th, 2023 [December 8th, 2023]
- McDonald's and Google Cloud Announce Strategic Partnership to Connect Latest Cloud Technology and Apply ... - PR Newswire - December 8th, 2023 [December 8th, 2023]
- Computing Power Market Revenue to Total USD 81.3 Billion by 2032 | Growing Investments In Data Centers - GlobeNewswire - December 8th, 2023 [December 8th, 2023]
- Aqua Security on how to navigate the Cloud's complexities - IT Brief Australia - December 8th, 2023 [December 8th, 2023]
- NCS partners with Google Cloud in Australia and Singapore - Channel Asia Singapore - December 8th, 2023 [December 8th, 2023]
- GigaIOs SuperNODE to Power TensorWave Deployment with AMD MI300X - High-Performance Computing News ... - insideHPC - December 8th, 2023 [December 8th, 2023]
- This $500 device lets you easily build your own Cloud Server instead of paying Google, Microsoft, or Amazon - Yanko Design - December 8th, 2023 [December 8th, 2023]
- What's Going On With Alibaba Cloud? - The Motley Fool - November 26th, 2023 [November 26th, 2023]
- China's Alibaba shakes up cloud unit management after scrapping the division's IPO - CNBC - November 26th, 2023 [November 26th, 2023]
- Five things to look for at AWS re:Invent 2023 - SiliconANGLE News - November 26th, 2023 [November 26th, 2023]
- Broadcom completes its $61 billion acquisition of VMware - Times of India - November 26th, 2023 [November 26th, 2023]
- On the Rise: The Top 3 Cloud Computing Stocks to Watch - Nasdaq - November 26th, 2023 [November 26th, 2023]
- What You Need to Know About Hybrid Cloud Computing - What You ... - InformationWeek - November 26th, 2023 [November 26th, 2023]
- Microsoft to invest $500 million to expand hyperscale cloud computing and AI in Quebec - MarketWatch - November 26th, 2023 [November 26th, 2023]
- Service Included, FinOps Foundation Counts Cost Of Cloud - Forbes - November 26th, 2023 [November 26th, 2023]
- Microsoft Unveils Azure Custom Chips: Revolutionizing Cloud Computing and AI Capabilities - MarkTechPost - November 26th, 2023 [November 26th, 2023]
- Why 2023 Became the Year of Next-Level Technology Value - Medium - November 26th, 2023 [November 26th, 2023]
- Edge vs Cloud or Edge plus Cloud: What is the way forward? - Express Computer - November 26th, 2023 [November 26th, 2023]
- eSurfing Cloud Launches the WisHub One-Stop Intelligent ... - PR Newswire - November 26th, 2023 [November 26th, 2023]
- Predictive Maintenance (PdM) Market to grow by USD 16.57 billion growth between 2022 - 2027 | Growth Driven by Increased adoption of advanced... - November 26th, 2023 [November 26th, 2023]
- Udemy Partners with Google Cloud as Inaugural Member of its New ... - AiThority - November 26th, 2023 [November 26th, 2023]
- AWS and DXC Technology Strengthen Alliance for Cutting-Edge ... - Read IT Quik - November 26th, 2023 [November 26th, 2023]
- Windows-as-an-app is coming - Computerworld - November 26th, 2023 [November 26th, 2023]
- 2 Soaring Stocks I'd Buy Now With No Hesitation - The Motley Fool - November 26th, 2023 [November 26th, 2023]
- ZTE holds Core Network User Congress in Thailand, driving digital ... - ZTE - November 26th, 2023 [November 26th, 2023]
- Mercedes F1 accelerates AI adoption in off-track IT transformation ... - ITPro - November 26th, 2023 [November 26th, 2023]
- Amazon wants to train millions of people in basic AI skills - TechRadar - November 26th, 2023 [November 26th, 2023]
- US grid rules preclude reliability, security benefits of cloud ... - Utility Dive - November 17th, 2023 [November 17th, 2023]
- Udemy Partners with Google Cloud as Inaugural Member of its New Cloud Endorsed Content Program - Yahoo Finance - November 17th, 2023 [November 17th, 2023]
- Google Cloud certifications nab highest-paying IT jobs - InfoWorld - November 17th, 2023 [November 17th, 2023]
- Nearly a quarter of businesses are losing more than 100,000 a ... - CloudTech News - November 17th, 2023 [November 17th, 2023]
- Cloud Security Alliance announces new zero-trust security credential - CSO Online - November 17th, 2023 [November 17th, 2023]
- Cloud Computing Market size to reach USD 2,495.2 billion by 2032 according to a new research report - WhaTech Technology and Markets News - November 17th, 2023 [November 17th, 2023]
- Vultr and Rescale Advance High-Performance Computing to Accelerate Engineering Innovation Worldwide - Yahoo Finance - November 17th, 2023 [November 17th, 2023]
- Cloudsky Showcases Breakthroughs in Cloud Computing at 2023 ... - PR Newswire - November 17th, 2023 [November 17th, 2023]
- Edenor reduces outages using cloud computing technology - Utility Week - November 17th, 2023 [November 17th, 2023]
- Software Growth Stocks: Consumption-Based Pricing Back In The ... - Investor's Business Daily - November 17th, 2023 [November 17th, 2023]
- High Availability Server Market to Cross USD 27.30 Billion in 2030 Driven by Rising Dependence on Digital Infrastructure and Surge in Cloud Computing... - November 17th, 2023 [November 17th, 2023]
- Micro Data Centers Market to Reach US$ 33.4 Billion by 2030, Driven by Growing Demand for Edge Computing and Cloud-Based Applications | According to... - November 17th, 2023 [November 17th, 2023]
- The 10 Coolest AI Tools And GenAI Products Of 2023 - CRN - November 17th, 2023 [November 17th, 2023]
- Civo CEO on free credits, egress fees, and hauling it all back on-prem - The Register - November 17th, 2023 [November 17th, 2023]
- Tech Headlines of the Week: Data Breaches, Microsoft's AI ... - Techopedia - November 17th, 2023 [November 17th, 2023]
- Vultr Announces Addition of NVIDIA GH200 Grace Hopper ... - Business Wire - November 17th, 2023 [November 17th, 2023]
- Proposed Rules Overhaul Cybersecurity Requirements for ... - JD Supra - November 17th, 2023 [November 17th, 2023]
- The #CloudExit Movement And What It Means For Amazon Stock ... - Seeking Alpha - November 17th, 2023 [November 17th, 2023]
- Nasdaq Completes Migration of Third US Market to AWS - Markets Media - November 17th, 2023 [November 17th, 2023]
- CSIT and Google Cloud partner to pilot sovereign cloud solution in ... - ETCIO South East Asia - November 17th, 2023 [November 17th, 2023]
- Qualcomm Cloud AI 100 Now Available in the Cirrascale AI ... - HPCwire - November 15th, 2023 [November 15th, 2023]
- ZTE and Computer Union join forces on cutting-edge IT solutions in ... - ZTE - November 15th, 2023 [November 15th, 2023]
- VAI Resort Taps Oracle Cloud to Deliver Rock-Star Guest Experiences - Oracle - November 15th, 2023 [November 15th, 2023]
- Oracle Helps Healthcare Organizations Improve Inventory ... - Oracle - November 15th, 2023 [November 15th, 2023]
- Paraverse Technology Releases Groundbreaking White Paper on Decentralized Operations and Trading Platforms for 3D Digital Assets - Yahoo Finance - November 15th, 2023 [November 15th, 2023]
- How to Leverage New Age Cloud Technologies for Business - Analytics Insight - November 15th, 2023 [November 15th, 2023]
- Cloud to help realise smarter AI-powered digital twins - FutureIoT - November 15th, 2023 [November 15th, 2023]
- NTT Beats New Drum To Bring Photonics-Powered AI To Industry - Forbes - November 15th, 2023 [November 15th, 2023]
- Gartner: Modernising legacy applications for cloud-native success - ComputerWeekly.com - November 15th, 2023 [November 15th, 2023]
- Alibaba Cloud and United Women Singapore launch digital female ... - ETCIO South East Asia - November 15th, 2023 [November 15th, 2023]
- KBZ Bank Digitizes for Innovation and Scale with Oracle - Oracle - November 15th, 2023 [November 15th, 2023]
- Southeast Asia's digital battle: Chinese and U.S. Big Tech face off ... - Nikkei Asia - November 15th, 2023 [November 15th, 2023]
- Vietnam Cloud Based Infrastructure as a Service Markets, Competition, Forecast & Opportunities, 2028F: Government Initiatives and Increasing... - November 15th, 2023 [November 15th, 2023]
- Cloud to drive surge in European IT spending next year - ITPro - November 15th, 2023 [November 15th, 2023]
- Oak View Group Partners with Oracle to Supercharge Fan ... - Oracle - November 15th, 2023 [November 15th, 2023]
- Momentus Inc. Announces Third Quarter 2023 Financial Results - Daily Host News - November 15th, 2023 [November 15th, 2023]
- Community and Critical Access Hospitals Select Oracle Health ... - Oracle - November 15th, 2023 [November 15th, 2023]
- AiAdvertising Reports Third Quarter 2023 Financial Results - Daily Host News - November 15th, 2023 [November 15th, 2023]
- GIC chief says investors should prefer Big Tech to start-ups on AI - Financial Times - November 15th, 2023 [November 15th, 2023]
- Daniel Seybold, Author at The New Stack - The New Stack - November 15th, 2023 [November 15th, 2023]