Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Cloud Security Primer 2017 - The Latest Thinking in Cloud Security

Richard Pain | May 19, 2017
As the cloud adoption gathers momentum across Asia, we explore latest thinking regarding cloud computing in terms of security, uptime and liability.

Cloudsec Banner Singapore 2017

Stay up to date about the latest cybersecurity threats and best practices at
CLOUDSEC 2017, 22nd August 2017, Singapore. Click here to attend

Cloud Security Primer

 

Enterprises across Asia are transitioning to the Cloud at an unprecedented rate due to the technology's proven cost savings and efficiencies. As a result, IDC predicts that 67% of all enterprise IT infrastructure and software spending will be for cloud-based offerings by 2020.

As the move toward Cloud gathers momentum, new ways of thinking about the cloud are emerging in terms of uptime, security and liability. Whilst the best practices pertaining to cloud security have already been extensively documented by the major cloud providers, this article will explore latest thinking regarding cloud computing.

 

Cloud Security Concerns Shift to Reliability Concerns

 

Ironically when cloud solutions first became available, the major concern was data security, but in many cases, the security assurances provided by the major cloud providers are often greater than those available when traditional IT is managed in-house.

The big public cloud providers are billion dollar companies which are highly resistant to attack and can provide assurances like ISO27001 and so on. But as more data and software is put on the Cloud, there is a greater importance on reliability as the impact of disruption increases.

One major example occurred in February 2017, customers of Amazon's Simple Storage Service experiences a 3.5 hour disruption, which caused problems for businesses including Apple Inc., who reported issues with its app store and music-streaming service.

At present, most cloud providers promote themselves on the basis that they can provide at least 99.95% reliability and uptime, but they also have lengthy service level agreements which help absolve them in the case of any unexpected outages.

Whether your company chooses to work with a cloud provider's standard service level agreement (SLA) or whether you can negotiate a custom SLA for a large deal, it's a matter of buyer beware when choosing your cloud provider. Companies migrating to the Cloud need to do their research about recent incidents, clearly understand the obligations of a cloud provider and the impact to your organisation in the case of disruption.

 

But Security is the Customer's Responsibility Too

 

Whilst the majority of cloud providers are in of themselves highly resistant to attack, Gartner predicts that, through to 2020, 95 per cent of cloud security failures will be the customer's fault, not the cloud provider's.

 

1  2  3  Next Page 

Sign up for CIO Asia eNewsletters.