How organizations can learn from cloud security breaches – TechTarget


Published: 06 Dec 2023

When Enterprise Strategy Group senior analyst Melinda Marks and I asked organizations if they had experienced a cloud-focused cyber attack in the last 12 months, an alarming 99% claimed their organization had.

Our research on cloud threat detection and response -- which surveyed 393 security pros and asked about their cloud environments' security controls and strategic cloud security plans -- is worrying, but organizations have an opportunity to make lemonade out of lemons here.

The following are the top five cyber attacks cited, along with guidance on appropriate countermeasures against future attacks:

My recommendations aren't earth shattering; they are best practices any CISSP could rattle off in their sleep. Why are these breaches occurring then? Too many organizations are so enamored with cloud technology and application development opportunities that they fail to put in basic safeguards.

Companies should commit to a strong cloud security foundation in 2024, starting with the essentials: governance, policies and cloud security training for software developers, IT operations and security professionals. When supplemented with continuous monitoring, alerting and risk scoring, CISOs can avoid many cloud security problems.

Jon Oltsik is a distinguished analyst, fellow and the founder of TechTarget's Enterprise Strategy Group cybersecurity service. With more than 30 years of technology industry experience, Oltsik is widely recognized as an expert in all aspects of cybersecurity.

Enterprise Strategy Group is a division of TechTarget. Its analysts have business relationships with technology vendors.

See original here:
How organizations can learn from cloud security breaches - TechTarget

Related Posts

Comments are closed.