Light Dark
August 2, 2016 By Preethy Soman 2 min read
Cloud Security

Organizations around the world understand the importance and the challenges of cloud adoption, and they continue to adopt the technology at a fast pace. Gartner predicted that the cloud market in India will reach $3 billion by 2017, which represents an almost fivefold increase from 2012.

Challenges of Cloud Adoption

On one hand, while cloud promises to change the way businesses run, it also presents significant challenges relating to information security and privacy. Organizations need to understand that, in addition to cost reduction and the ability to move from one licensing model to another, the major drivers behind cloud adoption should be transformation and innovation.

The Asia Cloud Computing Association’s “Cloud Readiness Index (CRI) 2016” recognized Hong Kong, Singapore, New Zealand and Australia above markets such as Germany, the U.K. and the U.S., showing that Asian economies are leading the world in cloud readiness but are extremely cautious about making the jump.

Below are some contributing factors:

Data Security

The cloud is an off-premises system, with data centers most likely residing in the U.S. and Europe. A strong security strategy is necessary to protect data, prevent cyberattacks and comply with international regulations, but it should not impact performance. Encryption of data being sent to the cloud and decryption of files back from the cloud should not impact the user experience.

Lack of Standardization

A provider could have the latest security features, but due to the general lack of cloud standardization, there are no clear-cut guidelines unifying cloud providers. Given the increase of cloud providers in different sectors, this is a huge problem for clients in determining how safe their data really is.

Legal and Regulatory Requirements

IT governance and risk managers need to work closely with the business to understand key cloud computing principles and to help establish effective governance practices.

Integration and Portability

Onboarding to the cloud platform is one of the key challenges faced by organizations looking to adopt cloud. Onboarding requires portability of key components that can be moved to the cloud and determining their interoperability with components that remain on in-house systems.

Cloud Security Is a Shared Responsibility

The biggest challenge that needs to be addressed is the notion that security is in the hands of the cloud provider. Security is a shared responsibility, and experts stress that the customer actually bears most of it. The majority of cloud threats can be avoided by ensuring basic security practices, such as:

  • Know where your data resides.
  • Use encrypted cloud services.
  • Use strong passwords and change them frequently.
  • Employ endpoint control over all devices accessing the data.
  • Create a backup schedule.
  • Stay alert, never assume and don’t take shortcuts to security.

Read the IDC white paper: A CISO’s Guide to Enabling a Cloud Security Strategy

 |  |  |  | 
Preethy Soman
Market Segment Manager for Application Security, IBM

More from Cloud Security
November 1, 2023

What is data security posture management?

3 min read - Do you know where all your organization’s data resides across your hybrid cloud environment? Is it appropriately protected? How sure are you? 30%? 50%? It may not be enough. The Cost of a Data Breach Report 2023 revealed that 82% of breaches involved data in the cloud, and 39% of breached data was stored across multiple types of environments. If you have any doubt, your enterprise should consider acquiring a data security posture management (DSPM) solution. With the global average…

October 19, 2023

Endpoint security in the cloud: What you need to know

9 min read - Cloud security is a buzzword in the world of technology these days — but not without good reason. Endpoint security is now one of the major concerns for businesses across the world. With ever-increasing incidents of data thefts and security breaches, it has become essential for companies to use efficient endpoint security for all their endpoints to prevent any loss of data. Security breaches can lead to billions of dollars worth of loss, not to mention the negative press in…

October 3, 2023

The importance of Infrastructure as Code (IaC) when Securing cloud environments

4 min read - According to the 2023 Thales Data Threat Report, 55% of organizations experiencing a data breach have reported “human error” as the primary cause. This is further compounded by organizations now facing attacks from increasingly sophisticated cyber criminals with a wide range of automated tools. As organizations move more of their operations to the cloud, they must also become increasingly aware of the security risks and threats that come with it. It’s not enough anymore to simply have a set of…

September 14, 2023

How I got started: Cloud security engineer

3 min read - In today’s increasingly cloud-focused business environment, cloud security engineers are pivotal in protecting an organization’s critical data and infrastructure. As experts in cloud security, they leverage their expertise to ensure that the ever-expanding amount of cloud data is safe from emerging threats and vulnerabilities. Cloud security professionals combine their passion for technology with a deep understanding of security principles to design and implement robust cloud security strategies. What experience do these security experts have, and what led them to the…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2023 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature