While most large enterprises are moving to the cloud in some form, the path is never as direct as chief information officers (CIOs) and chief information security officers (CISOs) might like it to be. Most come to terms with the fact that the cloud won’t be a single offering, but rather a hybrid multicloud that aligns critical applications with cloud service offerings that best suit their needs.
The journey to the cloud can be manageable, but it requires proactive planning and execution by a team with the right skills and domain knowledge. When conducted haphazardly, migrating to a hybrid multicloud too often disrupts an organization’s existing security controls.
Cloud service providers (CSPs) may boast about robust security measures, but those controls only apply to the subset of your data in their environment. Even then, those controls may not apply to tools or practices that a CSP believes are within the customer environment “boundary.” In most clouds, it’s still the responsibility of the customer to implement at least some security controls, and a hybrid multicloud approach means there are even more boundaries to understand, controls to manage and opportunities for security gaps that increase risk to the organization.
By combining a strategic cloud security program with the right security tools and services, organizations can tackle cloud migration with confidence that risks will be managed effectively.
Who Is Responsible for Securing Assets and Operations in the Cloud?
When migrating to the cloud, it’s natural to assume that the CSP will ..
Support the originator by clicking the read the rest link below.
