Cloud Security July 18, 2016
By Mark Campbell 2 min read

If you haven’t played the new “Pokemon Go” game yourself, someone close to you definitely has. The game has gone viral since its release, and it has people out in droves wandering around neighborhoods looking for Pikachu.

Five Lessons From ‘Pokemon Go’

In the workplace, cloud apps such as “Pokemon Go” are wildly popular — and have been for a while. We all want to play, but CISOs must consider some general security requirements to be both efficient and safe.

Here are five requirements from “Pokemon Go” that can be applied to adopting cloud apps in your organization.

1. Visibility Is Essential

There are lots of Pokemon out there, but which ones are best for your needs? Having a good view of all the apps in use within your organization will not only help understand what needs your employees are looking to address, but also provide insight into where you might need to take corrective actions.

For every Blastoise, there are ten Magikarp. Pick the apps that address the right balance of functionality and corporate security requirements.

2. Connectivity Matters

Games are no fun if you have to enter a long, complex password every time you want to play. The same goes for cloud apps. You need to ditch the passwords in favor of a federated system that enables strong authentication but does not require employees to enter long passwords or write complicated ones down on sticky notes.

3. Policies Must Be Enforced

One of the great things about “Pokemon Go” is that it gets kids (and parents too) out of the house and active. This is great, but some rules have to be followed. You wouldn’t want your kids wandering around in strange neighborhoods or out all night.

This also applies to cloud app usage. Policies have to be in place to ensure apps are used within corporate guidelines, ensuring safety for both the employee and the organization.

4. Have a Mobile Strategy

Cloud apps such as “Pokemon Go” are designed to be used on mobile devices. When deploying cloud apps to the enterprise, you have to consider mobile devices as a primary platform. It requires the same security safeguards and user experience that your employees on laptops behind the firewall have.

5. Education Is the Best Defense

Educating your employees raises their combat power (CP) to defend against threats. The more employees know about appropriate app usage and the potential threats, the lower the chances of their being taken down by Charizard — or an easily defeated cyberthreat.

Remember, just like with “Pokemon Go,” the key to success is to stay active and vigilant. Taking an active security role makes cloud applications safer for everyone.

Accelerate your cloud evolution with IBM Security Cloud Enforcer

 |  |  | 
Mark Campbell
Portfolio Marketing Manager for Cloud Security, IBM

More from Cloud Security
September 14, 2023

How I got started: Cloud security engineer

3 min read - In today’s increasingly cloud-focused business environment, cloud security engineers are pivotal in protecting an organization’s critical data and infrastructure. As experts in cloud security, they leverage their expertise to ensure that the ever-expanding amount of cloud data is safe from emerging threats and vulnerabilities. Cloud security professionals combine their passion for technology with a deep understanding of security principles to design and implement robust cloud security strategies. What experience do these security experts have, and what led them to the…

September 13, 2023

“Authorized” to break in: Adversaries use valid credentials to compromise cloud environments

4 min read - Overprivileged plaintext credentials left on display in 33% of X-Force adversary simulations Adversaries are constantly seeking to improve their productivity margins, but new data from IBM X-Force suggests they aren’t exclusively leaning on sophistication to do so. Simple yet reliable tactics that offer ease of use and often direct access to privileged environments are still heavily relied upon. Today X-Force released the 2023 Cloud Threat Landscape Report, detailing common trends and top threats observed against cloud environments over the past…

August 24, 2023

Lessons learned from the Microsoft Cloud breach

3 min read - In early July, the news broke that threat actors in China used a Microsoft security flaw to execute highly targeted and sophisticated espionage against dozens of entities. Victims included the U.S. Commerce Secretary, several U.S. State Department officials and other organizations not yet publicly named. Officials and researchers alike are concerned that Microsoft products were again used to pull off an intelligence coup, such as during the SolarWinds incident. In the wake of the breach, the Department of Homeland Security…

August 18, 2023

What you need to know about protecting your data across the hybrid cloud

6 min read - The adoption of hybrid cloud environments driving business operations has become an ever-increasing trend for organizations. The hybrid cloud combines the best of both worlds, offering the flexibility of public cloud services and the security of private on-premises infrastructure. We also see an explosion of SaaS platforms and applications, such as Salesforce or Slack, where users input data, send and download files and access data stored with cloud providers. However, with this fusion of cloud resources, the risk of data…

© 2023 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature