Weekly CloudNews: 81% of companies had a cloud security incident in the last year

Welcome to this week’s edition of CloudBolt’s Weekly CloudNews!

81% of companies had a cloud security incident in the last year

Duncan MacRae, CloudTech, October 3, 2022

“As many as 81% of organizations have experienced a cloud-related security incident over the last 12 months, with almost half (45%) suffering at least four incidents. The underlying issue for these security incidents is the dramatic increase in security and operational complexity connected with cloud deployments. And, since the organizations in this study currently host two fifths (41%) of their applications in the cloud but expect to increase to 57% over the next 18 months, this complexity will continue to increase. More than half (51%) of the security decision makers in the study believe security risks are higher in the cloud than on premises, citing several issues that contribute to those risks. The most common cloud-related security incidents respondents have experienced are: Security incidents during runtime (34%), Unauthorized access (33%), Misconfigurations (32%), Major vulnerabilities that have not been remediated (24%), A failed audit (19%).

“The study also investigated how responsibility for securing cloud-based applications is currently assigned across internal teams. This varies widely across organizations, with enterprise security teams (25%) the most likely to manage app security in the cloud, followed by operations teams responsible for cloud infrastructure (23%), a collaborative effort shared between multiple teams (22%), developers writing cloud applications (16%) and DevSecOps teams (10%). However, the number of security incidents indicates that none of these models are effective at reducing security incidents. When asked who should be responsible for security cloud-based applications, again, there was no clear consensus. The challenges connected with shared responsibility models is that security teams and development teams have very different goals and objectives.” READ MORE

Cloud Migration: A Recurring, Never-Ending Process

Christopher Tozzi, ITPro Today, October 5, 2022

“Although there’s a tendency to think of cloud migration as a one-time journey that you complete and then never have to do again, most businesses are actually in the midst of constant cloud migration. Today, more than 90% of businesses use the cloud. That means they’ve already completed the cloud migration process that got their workloads into the cloud in the first place. But it doesn’t mean that they’re not still undertaking cloud migration. There are many types of cloud migration, and making the initial move into the cloud is only one.

“In addition to making the initial move into the cloud, organizations may expand into multicloud or hybrid cloud architectures, or even repatriate some of their workloads back on-prem. Plus, in some cases, a business may end up performing the same type of cloud migration more than once. It could, for example, undertake a multicloud migration in order to add a second cloud to its architecture, then do another multicloud migration by adding a third cloud down the line. Because of these factors, businesses should never imagine that they’ve moved beyond cloud migration. They should instead prepare to plan and implement cloud migrations of all types on a recurring basis” target=”_blank” rel=”noopener”>READ MORE

Discover how a framework can transform your enterprise cloud strategy. Request your demo today.