| ||||||||||
| ||||||||||
Current Filter: Cloud>>>>>Analysis> Are we losing the battle for security in the cloud? Editorial Type: Analysis Date: 11-2014 Views: 3421 Key Topics: Cloud Security Compliance Management Key Companies: SafeNet Key Products: Key Industries: | |||
| More than 40% of corporate data stored in the cloud is not managed by corporate IT functions, according to a new research study. Cloud Hosting magazine investigates the implications. A majority of IT organisations are kept in the dark when it comes to protecting corporate data in the cloud, putting confidential and sensitive information at risk. This is just one of the findings of a recent Ponemon Institute study commissioned by SafeNet, Inc. The study, titled "The Challenges of Cloud Information Governance: A Global Data Security Study," surveyed more than 1,800 IT and IT security professionals worldwide. Among the key findings, the research indicates that while organisations are increasingly using cloud computing resources, IT staff are having trouble controlling the management and security of data in the cloud. The survey found that only 38 per cent of organisations have clearly defined roles and accountability for safeguarding confidential or sensitive information in the cloud. Adding to the confusion, 44 per cent of corporate data stored in cloud environments is not managed or controlled by the IT department. And more than two-thirds of respondents say it is more difficult to protect sensitive data in the cloud using conventional security practices. "The findings reveal that global organisations are struggling to secure data in the cloud due to the lack of critical governance and security practices in place," said Dr. Larry Ponemon, chairman and founder of the Ponemon Institute. "To create a more secure cloud environment, organisations can begin with simple steps such as including IT security in establishing security policies and procedures; increasing visibility into the use of cloud applications, platforms, and infrastructure; and protecting data with encryption and stronger access controls, such as multi-factor authentication."
AS CLOUD POPULARITY GROWS, SO DOES RISK However, the majority of respondents (70 per cent) agree that it is more complex to manage privacy and data protection regulations in a cloud environment, and they also agree that the types of corporate data stored in the cloud, such as emails, and consumer, customer, and payment information, are the types of data most at risk.
SHADOW IT AND THE NEED FOR ACCOUNTABILITY Along with this lack of control over the sourcing of cloud services, views on who is actually accountable for cloud data security are mixed. Thirty five per cent of respondents say it is a shared responsibility between the cloud user and the cloud provider while 33 per cent say it is the responsibility of the cloud user and 32 per cent say it is the responsibility of the cloud provider.
ALTERNATIVES TO CONVENTIONAL SECURITY MEASURES
Page 1 2 | ||
Like this article? Click here to get the Newsletter and Magazine Free! | |||
Email The Editor! OR Forward Article | Go Top | ||
PREVIOUS | NEXT |