August 18, 2016 By Douglas Bonderud 2 min read

Ask companies about the biggest downside to adopting public cloud computing and the same answer comes up over and over: security. Despite over a decade of cloud advancement and the rise of niche solutions such as security-as-a-service, IT professionals and C-suite members alike are still reluctant to fully embrace public alternatives.

According to ZDNet, however, a recent survey discovered that attitudes may finally be changing. Fifty-one percent of respondents said cloud security was better than on local stacks, and 58 percent argued that public options are the “most secure.” Yet over half still said concerns about data security prevented earlier cloud adoption. What will it take for clouds to finally get the all-clear?

A Shift Is Underway

Cloud adoption is on the rise, noted CloudTech, with 50 percent of those surveyed saying they plan to bump up public usage by 25 percent in the next three years and another one-quarter of respondents planning for a 50 percent usage increase over the same time period.

There is a shift underway, since “all signs point to public cloud adoption growing and enterprise IT becoming more comfortable with the prospect of running their most sensitive data on public cloud infrastructure,” according to Tony Safolan, president of SADA Systems, the organization that conducted the new study. Nonetheless, data security is a consistent touchpoint for all IT pros considering a move to the cloud.

Fact Versus Feeling

So where’s the disconnect? It comes down to fact versus feeling. As noted by InfoWorld, cloud providers understand that a single data breach or security incident could sink their brand and their business. As a result, they spend big money and invest substantial time to develop secure server architecture and ensure data is encrypted, isolated and effectively unassailable — even in the event of government warrants.

What’s more, the centralized model of public clouds makes it possible to quickly deploy patches or hotfixes. Cloud providers are typically on the leading edge of security tech, since it’s a make-or-break investment for their product.

There’s little doubt that public services are, in fact, more secure than on-premises options. But the feeling of moving data off-site and the worry that comes with it still makes IT professionals uneasy. Companies invest, but they’re not always comfortable.

Securing the Public Cloud

Despite their unease, IT professionals now recognize the benefits of shared computing architecture for both sheer computing power and data security. As a result, public cloud spending is on the rise.

But that doesn’t mean the quest to improve cloud security is over. In fact, the opposite is true: Public services are now high-value targets for cybercriminals looking to steal keys to the digital kingdom and swipe corporate data. As a result, both local IT professionals and cloud providers have a vested interest when it comes to locking down the cloud and ensuring new threats can’t gain a foothold.

For example, next-gen endpoint firewalls and unified threat management (UTM) solutions are rapidly becoming commonplace. Under new shared responsibility models, providers work alongside local professionals to discover new security threats and implement controls — such as context-based detection methods and identity-based access approaches — in an effort to improve total cloud security.

Cloud adoption is up, but cloud comfort hasn’t quite caught up. As IT professionals experience cloud protection firsthand and become an integral part of the security discussion, however, expect feelings to align more closely with public cloud facts.

More from

How will the Merck settlement affect the insurance industry?

3 min read - A major shift in how cyber insurance works started with an attack on the pharmaceutical giant Merck. Or did it start somewhere else?In June 2017, the NotPetya incident hit some 40,000 Merck computers, destroying data and forcing a months-long recovery process. The attack affected thousands of multinational companies, including Mondelēz and Maersk. In total, the malware caused roughly $10 billion in damage.NotPetya malware exploited two Windows vulnerabilities: EternalBlue, a digital skeleton key leaked from the NSA, and Mimikatz, an exploit…

3 Strategies to overcome data security challenges in 2024

3 min read - There are over 17 billion internet-connected devices in the world — and experts expect that number will surge to almost 30 billion by 2030.This rapidly growing digital ecosystem makes it increasingly challenging to protect people’s privacy. Attackers only need to be right once to seize databases of personally identifiable information (PII), including payment card information, addresses, phone numbers and Social Security numbers.In addition to the ever-present cybersecurity threats, data security teams must consider the growing list of data compliance laws…

ICS CERT predictions for 2024: What you need to know

4 min read - As we work through the first quarter of 2024, various sectors are continuously adapting to increasingly complex cybersecurity threats. Sectors like healthcare, finance, energy and transportation are all regularly widening their digital infrastructure, resulting in larger attack surfaces and greater risk exposure.Kaspersky just released their ICS CERT Predictions for this year, outlining the key cybersecurity challenges industrial enterprises will face in the year ahead. The forecasts emphasize the persistent nature of ransomware threats, the increasing prevalence of cosmopolitical hacktivism, insights…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today