Report: enterprises still lack confidence in cloud
This week, Ovum published new report outlining current views on cloud adoption within enterprises. According to the analysis, lack of confidence in security remains the largest hurtle for businesses considering cloud adoption. As increasingly crucial data is stored using cloud technology basic security measures are no longer sufficient, while the inability to manage cloud in-house due to lack of IT security skills, as well as the failure of providers to thoroughly implement security features, leaves this crucial data especially vulnerable.
The report details how, despite the rapid adoption of cloud computing and multi-cloud strategies, current security measures are not keeping pace. "Security, or lack thereof, is a significant issue," principal analyst, Andrew Kellett, writes in the analysis. "If there is one problem area inhibiting further adoption of cloud-based services, it is enterprise concerns about shortfalls in the protection regimes of many cloud service providers.”
Increasingly complex security challenges coupled with the cyber-security skills gap means cloud security specialists have their work cut out for them and must prioritise data protection features. "Many cloud providers have been guilty of ‘bolting on' security as an afterthought, something which has left previous generations of technology vulnerable to malware attacks, advanced persistent threats and other breach tactics,” Kellett writes.
In response to the report's findings, Eleri Gibbon, vice president at FireHost EMEA, commented in an email to SCMagazineUK.com: “In today's business climate, cloud service providers need to demonstrate their commitment to improving IT security."
Gibbons also puts the onus on customers who need to take action and "look elsewhere" if their security needs are not met by their current providers. "Security-conscious industries in particular," Gibbons says, "such as retail, payments and finance, should seriously consider the use of secure, specialist cloud solutions to ensure the protection of their sensitive and extremely valuable data."