Wednesday, February 21, 2018
Home » Security and Compliance » The Intersection of the Cloud and Security

The Intersection of the Cloud and Security

There’s always been a good amount of interest paid to security when discussing the cloud. It’s often cited as a barrier to adoption, and is certainly something the enterprise must focus on. Just take a look at recent breaches at companies like Spotify, or the exposure of the Panama Papers. It’s imperative to have a sound strategy in place to handle breaches if and when they happen.

While many enterprises are hesitant to migrate because of a perceived lack of security, cloud computing may actually be the most important driver for security as a whole. Here are just a few ways the cloud is transforming how we think about security.

Tales from the encrypt

It’s understandable why cloud clients are concerned with protecting their data. After all, they see the data breaches occurring over the past several years within government and private sectors, and wonder if the same thing could happen to them. As a result, encryption has been on the rise lately, when data is either in motion or at rest. According to a study from the Ponemon Institute, over 75 percent of U.S. organizations view data protection activities as a crucial part of enterprise risk management. That’s nearly double the percentage of other countries, though more organizations worldwide are adopting an overall encryption plan or strategy.

Not only does encryption usage indicate a higher level of awareness of threats to sensitive and confidential information, it can also help a company’s overall brand, as well. You never want to deal with a data breach, but if it happens (and as some would argue, when it happens), you must be able to respond quickly to protect your company’s hard-earned reputation. A number of businesses are also turning to encryption in order to comply with data security or privacy regulations and requirements.

The wonderful world of tools

A root problem for enterprise companies is finding the right people to trust with their security. You wouldn’t hand over the keys to your home to anybody, and it’s the same situation with security. That’s where the cloud comes in–businesses can find security solutions, including malware, email, and web tools to enhance their overall security. The security as a service market is rising at a 22 percent Compound Annual Growth Rate and is projected to increase by more than $5 billion by 2020.

The increase in tools can be overwhelming.. Look at the AWS Marketplace: there are 404 results (better than the typical 404 screen, but still a bit intimidating) for security products, and many even offer a free trial. Few, if any businesses have the time necessary to go through all of those tools. Fortunately, you don’t have to go it alone–an enterprise can partner with a managed service provider to find exactly what they need for their cloud infrastructure. For cloud companies focused on infrastructure-as-a-service and platform-as-a-service, the level of customization is nearly unparalleled, and it’s certainly more economically viable than purchasing and implementing an in-house solution.

Improved intelligence

Passwords alone aren’t the best way to keep our data safe. Two-factor authentication (2FA) and multi-factor authentication (MFA) are great first steps, but with advances in big data, it’s possible to achieve even more. Picture this: each individual user within an infrastructure could have a profile that’s unique to them. The profile would be developed via sources like device usage and user behavior, and would monitor and detect any malicious authentication activities that aren’t normal for that specific profile. This type of authentication is more secure, and nearly undetectable for the end-user.

We’re excited to see how these kinds of tools will continue to improve security for enterprises across all verticals. The cloud will keep playing a big part in those security advancements. Here are a few of our favorite tools currently on the market:

About David Lucky

David Lucky
As Datapipe’s Director of Product Management, David has unique insight into the latest product developments for private, public, and hybrid cloud platforms and a keen understanding of industry trends and their impact on business development. David writes about a wide variety of topics including security and compliance, AWS, Microsoft, and business strategy.

Check Also

How to Prepare for the New EU General Data Protection Regulations

The General Data Protection Regulation (GDPR) is a set of rules for transactions that happen within EU member states that require organizations to protect the personal data and privacy of people. More than half of US organizations believe they’ll be fined due to the upcoming GDPR changes, according to an Ovum survey. That same report found two-thirds of businesses expect to have to change their global business strategies to account for these new data privacy regulations. The GDPR’s updated rules go into effect on May 25, 2018. Not complying with these regulations can have dire consequences, so make sure you understand the requirements and upcoming deadlines.