Many IT pros remain concerned with the risk of data loss and leakage in the cloud, according to a new survey from AlgoSec.
Cloud Provider Security-Many companies are increasingly looking to the cloud as a more effective and efficient way to manage their applications and other business assets. Ideally, a cloud environment can offer the agility, flexibility, and scalability that a company may not be able to achieve internally. However, the cloud carries its own set of concerns and challenges, several of which were highlighted in a Tuesday report released by security provider AlgoSec.
Respondents pointed to specific security concerns when running applications in the public cloud. Those concerns included unauthorized access to cloud-based data, infiltration of more sensitive areas of the network (either in the cloud or on premises), data corruption, outages due to Denial of Service attacks, and the abuse of resources (e.g., cryptomining).
Ideally, using a cloud provider should alleviate some of the internal effort involved in managing applications and other assets. But IT pros still need to manage security in the public cloud, and that task carries its own challenges. Proactively detecting misconfiguration and security risks with public cloud vendors was the top obstacle cited in this area.
Respondents also pointed to other public cloud security challenges, including a lack of visibility into the entire cloud estate, compliance and preparation for audits, managing both cloud and on premises environments, managing a multi-cloud environment, and a lack of expertise in cloud-native security.
The survey also posed questions about multi-cloud environments. Yes, using multiple providers reduces the reliance on a single provider. But a multi-cloud environment adds certain challenges as well.
Among the respondents, 66% said they rely on several cloud providers, with 35% reporting that they use three or more providers. To add to the complexity, organizations may use both public and private clouds. A full 55% of those polled said they use a hybrid cloud environment with at least one public and at least one private cloud. Some 35% said they use a combination of a multi-cloud and hybrid cloud environment.