Security teams failing to keep up with cloud server growth
Charities are being urged to keep on top of cloud security after a survey highlighted holes in enterprise cloud server protection
Charities are being urged to keep on top of cloud security after a survey highlighted holes in enterprise cloud server protection.
Security firm CloudPassage found that the agility, scalability and dynamic nature of the cloud has increased the number of server workloads and attackable surface area that require protection and monitoring. At the same time, security staff sizes remain the same, and many are still not automating security controls on cloud workloads.
Key findings include:
- Overall, 85% of IT security professionals said security team hiring has not kept pace with the rate at which new server workloads are created, changed or retired in the cloud.
- Only 28% of respondents are leveraging a full suite of tools that enable them to secure and audit cloud server workloads automatically when configuring and deploying them; 37% have some security automation tools for configuration and deployment, but another 35% are not automating security for configuration or deployment at all.
- The majority of respondents (62%) reported they are beginning to automate some or all of the tools they use to secure and audit workloads in cloud infrastructure environments. Respondents said the security tools they most commonly automate are: firewalls and segmentation tools (19%) and intrusion detection tools (18%).
Carson Sweet, co-founder and chief technology officer of CloudPassage said: “While organisations have started to understand that cloud infrastructure can deliver faster development, deployment, and innovation cycles, many are not thinking about the related impact to security operations. It only takes one compromise to derail adoption of these new technologies and wreck the value they otherwise could have added.
“We hope enterprises seek to protect these investments sooner than later by enabling security that’s dynamic, automated and on-demand…in other words, agile security that can harmonise with more broadly agile IT delivery models.”