Most cloud providers are only responsible for protecting the infrastructure that runs these services, while the customer is responsible for security inside the cloud, creating a shared responsibility of both the cloud provider and customer.
The cloud is more available than ever but are you making sure it’s secure?
Flexibility, speed, scalability, decreased infrastructure and maintenance costs all contribute to the allure of cloud computing. With increased cloud adoption, organisations are showing caution when it comes to maintaining data security while migrating to the cloud.
From widescale data breaches such as Equifax and the NSA to tools used in ransomware attacks such as Petya, to the suspected N Korean WannaCry attack, 2017 was a watershed year for cyber-crime. These brought a wave of questions about the security of an organisation’s data. IT and security departments face tough security challenges due to the wildly interconnected nature of today’s business environment.
When it comes to migrating to the cloud, the number one fear for a Chief Information Security Officer (CISO) is losing control of their data. Wholistic cloud security is a baseline requirement for organisations migrating to the cloud. Below are some key ideas and questions to get started on your secure journey to the cloud: Who’s responsible for the security of my data?
There’s a common misconception that the cloud service provider is responsible for your data’s security. However, most providers are only responsible for protecting the infrastructure that runs these services, while the customer is responsible for security inside the cloud. This creates a shared responsibility of both the cloud provider and the customer. As a customer, you need to make sure that your security controls are in place and that your cloud provider offers the levels of security you require. It’s up to you to choose the right controls for your organisation.