In its latest report, The Cloud Data Security Imperative, TechTarget’s Enterprise Strategy Group (ESG) recently surveyed IT, cybersecurity, and DevOps professionals responsible for evaluating, purchasing, testing, deploying, and operating hybrid cloud data security technology products and services at midmarket and enterprise organizations in North America.
Overview of the facts from the report
1. Readiness for Cloud Migration
The report begins by highlighting a concerning trend – Many organizations are keeping up with the fast migration of their data to public clouds. The increasing use of public clouds, combined with digital transformation and remote work, has left over a third of organizations feeling that their data is not well-protected. This brings up concerns about the effectiveness of current security measures, especially as more organizations adopt multiple cloud services with different controls and policies.
2. Cloud Data Loss
39% of respondents are aware that their organizations have experienced the loss of cloud-resident sensitive data. Even more concerning is the 20% who suspect data loss but lack the necessary tools or expertise to confirm it. This lack of visibility and inadequate response capability leads to multiple unaddressed incidents, showcasing a security gap. Learn the most common reasons for data loss recorded in the survey report.
3. Visibility vs Reality
The report discusses how organizations' confidence in finding and categorizing data affects their success in securing it. There's an apparent problem due to organizations' being unaware of the sensitive data loss and having doubts about the effectiveness of CSP tools. This mismatch emphasizes the immediate need for organizations to close the gap between their perceived security level and the actual vulnerabilities in cloud data.
4. Integrated Data Security Platforms
Organizations are increasingly choosing integrated data security platforms. They include support for Cloud Service Providers (CSP) and third-party tools to establish uniform policies for all data, irrespective of its nature or whereabouts. The inclination towards such a comprehensive platform is due to the necessity to achieve more with limited resources, the plethora of disparate cybersecurity tools, and the ongoing shortage of cybersecurity expertise globally.
5. The Rise of the Cloud Security Architect (CSA)
The report then discusses the rise of the Cloud Security Architect (CSA) in leadership positions in securing data and managing growing security threats. CSAs primarily work with the Chief Information Security Officer (CISO) and often report to the extended C-suite as well. While they specialize in this area, the report stresses that securing data is not a single person’s job but a team effort, requiring collaboration between IT operations, security, and DevOps.
Preparing for the Future
Expectations are that organizations will invest more in tools and controls for this purpose. The focus will be on technologies that bring together policies and controls across hybrid cloud environments to manage the growing pace of data growth and volumes.
TechTarget’s ESG research report reveals current challenges in securing cloud-resident sensitive data and offers a future roadmap. The insights and recommendations in the report are valuable for organizations managing to improve cloud data security. The full report is available to further understand the complexities and opportunities ahead.
Get your online copy here.