According to Gartner, worldwide end-user spending on public cloud services is forecasted to grow by 18.4% in 2021 to a total of $304.9 billion, up from $257.5 billion in 2020.
“The pandemic validated the cloud’s value proposition,” said Sid Nag, research vice president at Gartner. “The ability to use on-demand, scalable cloud models to achieve cost efficiency and business continuity is providing the impetus for organizations to rapidly accelerate their digital business transformation plans.”
From the earliest stages of the cloud, the ability to create a server instantaneously, without the need for installation, maintenance, and management attracted forward-thinking adopters. Today, the continual growth of cloud computing may well be our generation’s biggest success story, with Forrester predicting that cloud-native is the route to powering digital transformation in 2021 via serverless, containers, and Kubernetes.
However, new technologies require new skills and knowledge, and with the kind of lightning-fast pace of change we see in cloud computing, it’s easy to understand how blind spots and vulnerabilities slip through the net. After all, security in cloud environments is a far cry from securing on-premises infrastructure.
Understanding cloud security risks
Over the past decade, we have seen tremendous growth in both public and private cloud adoption, but the landscape is far from simple. Think about the diversity of requirements, best practices, and architecture for the following three categories, just to start:
IaaS: From the “Big 3” – AWS, Azure and GCP – to Alibaba Cloud, and Oracle Cloud.
PaaS: AWS Elastic Beanstalk, Heroku, K8S, Cloud Foundry, Apache Mesos, etc.
Side technologies: In this category, let’s include technologies such as Terraform and AWS CloudFormation for provisioning infrastructure and IaC, or Chef for cloud migrat ..