Light Dark
September 25, 2015 By Cathal O'Donovan 2 min read
Cloud Security

As the work environment landscape changes and employees become more mobile, the use of cloud-based collaboration tools is growing. These cloud-based applications bring their own IT assets that are outside the control of the corporate IT team, thus creating a new type of shadow IT.

These types of tools cause businesses to lack visibility and control. There is also the risk that these shadow IT cloud tools require new controls or processes. At the same time, IT budgets are being squeezed, and cloud services offer valuable savings and increased efficiency. While it is difficult to strike the necessary balance between the proactive adoption of resources and budgetary restrictions, it is possible with the right initiative from chief information security officers (CISOs) and other executives.

CISOs Need to Take the Lead

CISOs and chief information officers now need to ask questions regarding how they do the following:

  • Uncover shadow IT practices
  • Gain visibility into cloud application usage
  • Remove unapproved cloud apps
  • Protect against any risky behavior
  • Respond quickly to growing security threats that emerge as a result of shadow IT
  • Address compliance and governance concerns as it relates to shadow IT
  • Support the business in the adoption of software-as-a-service (SaaS) and cloud-based apps

IT teams need to discover, connect and protect the business’s use of these new cloud-based SaaS apps. This includes partnering with the lines of business in approving these new apps and training employees on how to properly use them.

Finding the Right Model to Fight Shadow IT

A model to consider follows many of the patterns from the on-premises world. It prioritizes discovery and visibility, identity and access, event correlation, threat prevention, policy enforcement and easy-to-use catalogs.

Discovery establishes a learning period to identify what is being used, which data is being shared and where it located. Organizations should implement identity and access controls to these new approved apps, encourage the fast onboarding of the new apps and add an easy-to-use catalog for organizational purposes. A fast onboarding process and a thorough catalog of approved apps gives the business the speed and agility it needs. Event correlation should also feed a centralized event management system from these new cloud SaaS programs.

Threat prevention needs to understand the reputation of apps and the security posture they have certified, all while blocking unapproved apps with questionable reputations and enforcing policies that block access to rogue apps. New, effective enforcement policies could be achieved by integrating with threat intelligence communities. An app store should clearly list the approved, security-compliant apps.

In today’s changing environment, security and compliance strategies need to change quickly. They can be most effective when teams partner with the lines of business to ensure organizations have the proper tools for protecting the business and its reputation.

 |  |  |  |  | 
Cathal O'Donovan
DevOps Manager, IBM

More from Cloud Security
June 6, 2024

AI-driven compliance: The key to cloud security

3 min read - The growth of cloud computing continues unabated, but it has also created security challenges. The acceleration of cloud adoption has created greater complexity, with limited cloud technical expertise available in the market, an explosion in connected and Internet of Things (IoT) devices and a growing need for multi-cloud environments. When organizations migrate to the cloud, there is a likelihood of data security problems given that many applications are not secure by design. When these applications migrate to cloud-native systems, mistakes in configuration…

May 15, 2024

New cybersecurity sheets from CISA and NSA: An overview

4 min read - The Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA) have recently released new CSI (Cybersecurity Information) sheets aimed at providing information and guidelines to organizations on how to effectively secure their cloud environments.This new release includes a total of five CSI sheets, covering various aspects of cloud security such as threat mitigation, identity and access management, network security and more. Here's our overview of the new CSI sheets, what they address and the key takeaways from each.Implementing…

April 9, 2024

Why security orchestration, automation and response (SOAR) is fundamental to a security platform

3 min read - Security teams today are facing increased challenges due to the remote and hybrid workforce expansion in the wake of COVID-19. Teams that were already struggling with too many tools and too much data are finding it even more difficult to collaborate and communicate as employees have moved to a virtual security operations center (SOC) model while addressing an increasing number of threats.  Disconnected teams accelerate the need for an open and connected platform approach to security . Adopting this type of…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature