The State of Cybersecurity and the Cloud Today – Californianewstimes.com

admin on August 20, 2021 Leave a Comment

When cloud computing was first introduced, numerous questions were asked about the ability of cloud service providers to keep infrastructures and data secure. As more businesses and organizations began migrating to the cloud, it became evident that major cloud service providers were better equipped and more capable than many businesses and organizations when it comes to securing data and networks.

However, years later, questions still remain, and customers of cloud services are still on the hunt to find more improved ways to secure their data. Today, cloud security is becoming less of a disconnected practice and more of an essential element of security and data protection strategies. The cloud is everywhere, and this means that securing cloud applications and data should be among the top priorities of a business or organization.

On the face of it, cloud computing and cybersecurity might seem like extreme opposites. Cloud computing requires businesses and organizations to store their data off-site and cybersecurity requires building virtual walls around an organization, protecting data at all costs. Cloud computing means outsourcing and putting your data in the hands of a third party to keep data and transactions safe. Cybersecurity means keeping everything close, putting faith in employees, and trusting that on-site strategies, procedures, and protocols can get the job done.

As more businesses and organizations move their computing and data to the cloud, we see a mutual relationship between the two practices. As a result, we have been introduced to cloud security, the practice of ensuring cybersecurity when depending on cloud computing. Businesses and organizations are accelerating their use of the cloud, but more organizations should slow down and make sure security is implemented in the very beginning.

Cloud security is turning into the new cybersecurity, but it was not easy to reach this point. There was some distrust that made it a challenge for some IT managers to allow data to be stored and protected on off-site servers. Businesses and organizations that migrate to the cloud and benefit from the cost savings will likely find a great amount of success. This makes cloud computing an essential business strategy and this also makes cloud security necessary. Unfortunately, some businesses and organizations do not have effective cloud security structures. When asked for an opinion on the state of cloud security today, Jorge Rojas said the following: We find that for most clients, cloud security is poor.

Cloud security is at the forefront of all IT leaders today. The new workforce that includes in-office, fully remote, and hybrid has caused many new challenges. The attack vector has grown significantly because of this new working ecosystem. This challenge can be addressed but requires organizations to have a full grasp of their IT systems. Every system or application needs to be managed by single sign-on and two-factor authentication. SASE solutions should be implemented as well. At the end of the day, with cloud solutions, it comes down to managing the endpoint. All corporate devices should be managed with a central identity that can ensure patching and compliance, said Holden Watne of Generation IX, a Los Angeles IT Services company.

The cloud has rapidly become one of the most popular technologies for organizations and individuals thanks to its availability on multiple platforms, ease of use, data storage, and on-demand computing capacity. The prevalence of the cloud is incredible, with more users and organizations making use of it each day. This is also the reason for concerns regarding data privacy and the security of cloud computing services, said Anthony Buonaspina, BSEE, BSCS, CPACC, CEO and Founder of LI Tech Advisors.

Cloud computing can offer an effective security solution. Small to medium-sized businesses are especially vulnerable to cyber threats and cyberattacks such as ransomware because they do not always have the tools and resources that are needed to improve their cybersecurity. Moving to the cloud can improve security because cloud vendors have some of the most effective and strong security in the IT space. The state of cybersecurity will go as small business owners go. Meaning, the more technology innovates and can bring the best solutions down to the small user, the better our economy will be insulated from hackers, said Mike Selah of Advantage Industries.

Cloud vendors understand the part they have to play in cybersecurity, but in the end, if a business or organizations data is compromised, it is the organization that will have to respond to complaints and/or pay fines and penalties. Also, if an organization falls victim to a ransomware attack, the cybercriminals will go after the organization for the ransom. Even when you are using cloud computing, you cannot let your guard down at any point. There are still numerous challenges that organizations face when it comes to cloud security.

The biggest challenge is a lack of evolution. Too many companies will do one thing to improve their cyber security and then remain status quo for years at a time. The tools we implement for our customers today are vastly different than they were just six months ago. This needs to be a budget item. There isnt a single company that would not factor paying for internet access into their monthly budget, yet many companies do exactly that when it comes to cyber. Over 80% of companies with 200 employees or less have never conducted an independent third-party cyber security audit. They dont even know what they dont know. We had a customer return to us last week (the left because we were too expensive) because one partner had their email hacked and the hacker sent out thousands of spoof emails to their database. The less expensive vendor could not regain control of the email for them and the customer feels they must now shut down an email account they have used for over a decade, just to block out the hacker, said Mike Selah of Advantage Industries.

The most common challenges organizations face are data breaches that result in loss or exposure of client personal and private information. These types of breaches can put an organization at great risk and face huge expenditures in remediation as well as a ruined reputation. One of the major challenges are security breaches due to employee negligence due to lack of cybersecurity training said Anthony Buonaspina, BSEE, BSCS, CPACC

CEO and Founder of LI Tech Advisors.

Most times are to have clients that the cloud is not cheaper than on-site and there is management involved in them, ie Microsoft provides the platform, but there is no backup, and you need to manage it. For additional security, there are substantial licenses/ setup and monitoring costs, said Jorge Rojas of Tektonic Inc, a Toronto, Canada IT services company.

The most common challenges organizations face are data breaches that result in loss or exposure of clients personal and private information. These types of breaches can put an organization at great risk and face huge expenditures in remediation as well as a ruined reputation. One of the major challenges is security breaches due to employee negligence due to a lack of cybersecurity training, said Anthony Buonaspina, BSEE, BSCS, CPACC, CEO and Founder of LI Tech Advisors.

The biggest challenges that businesses face is the cost of security versus the protection they receive. Basically, what is the best bank for the buck and what security measures should be invested in over others, added Buonaspina.

From my perspective, the biggest issue with cloud security today is that it is extremely easy to add cloud accounts and share information. Trying to control how many different cloud applications are being used by the enterprise and keeping all of them at the same security level has become almost impossible. My advice to any enterprise today is to limit the number of cloud applications that are being used since most of them do not have the security integration that is required in order to keep your data safe, said Ilan Sredni of Palindrome Consulting, Inc.

There were a number of data breaches in 2020 that were of enormous concern for businesses and organizations. In 2021, there has been a dramatic rise in attacks, typically driven by cybercriminals looking to take advantage of poor or lack of security measures. Aside from the familiarity of data breaches that have affected small and large organizations across the globe, there are many lessons that can be learned about how any business or organization could be the next victim.

When organizations moved from on-prem to cloud, everyone definitely took a step back on the security front. But as the adoption is rapidly growing, so is the security and organizations maturity around it. In 2020, there were so many incidents that came to light revolving around cyber security, like CapitalOne, Marriott, Solarwinds etc, said Ashu Singhal of Orion Networks. A few aspects to keep in mind: 1. No infrastructure is big or small when it comes to cybersecurity 2. Do not just focus on perimeter security (ie firewalls are not enough) but also think about various domains of security (end points, application, network etc). This is especially important in the cloud as not everything is behind a perimeter anymore 3. Do not just bank on preventive measures, but also have a plan of action if it does happen, so its not as disruptive

According to Gartners cloud security assessment, by the year 2025, 99% of failures in cloud security will be a result of security issues on the customer side, not the cloud provider side. Some of the most catastrophic security breaches in 2020 were the result of deficient cloud security. This trend will continue as long as the organizations do not improve their defenses, said Buonaspina.

Everyone is vulnerable. A good start is to implement MFA whenever possible, in addition with complex passwords, solid patch management of both OS and applications, said Rojas.

When asked to share a few pieces of advice for organizations in 2021 and moving forward, Rojas shared the following:

Buonaspina shared the following:

It is here to stay, with the explosion to work from home due to the pandemic. This trend is here to stay. Bad actors are aware of this and they are cashing in, said Rojas.

The future of cloud security will be equivalent to building bigger walls and deeper motes. The cloud of the future is going to need to be stronger and more resilient than anything before and fortified with defenses that will be able to keep up with threats in real-time. These types of protections are going to have to be more automated, more discriminating, and sophisticated, incorporating AI and technologies that will allow for high levels of security while maintaining a good user experience that doesnt encumber their access to the information they require, said Buonaspina.

See original here:
The State of Cybersecurity and the Cloud Today - Californianewstimes.com

Related Posts
Posted in Cloud Computing

Comments are closed.