The move towards a multi-cloud computing
environment, while beneficial, also poses a great security threat to businesses, a new survey has claimed.
A study by Tripwire
covered security professionals responsible for the security of the public cloud
infrastructure within their organization.
A majority of the respondents (73%) currently operate in a multi-cloud environment, but virtually all (98%) of the security professionals responsible for these environments report that relying on multiple cloud providers also creates additional security challenges.
TechRadar needs you!We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and you can also choose to enter the prize draw to win a $100 Amazon voucher or one of five 1-year ExpressVPN subscriptions.
>> Click here to start the survey in a new window <<
Given the growing complexity of systems and threats that come with moving to a cloud environment and security policies that are unique to each provider, it makes sense that organizations are finding it increasingly difficult to secure the perimeter, said Tim Erlin, vice president of product management and strategy at Tripwire.
With the survey, Tripwire hoped to evaluate the cloud security practices across enterprise environments in 2021.
It discovered that while a majority (59%) have configuration standards for their public cloud and many (78%) use best-practice security frameworks, only a small subset (38%) applies them consistently across their cloud environment.
Shared responsibility was another aspect that was highlighted in the survey. Many of the respondents expressed that the shared responsibility models for security between cloud service providers and their customers isnt always clear.
In fact, three-quarters of the respondents admitted to relying on third-party tools or expertise to secure their cloud environment.
The respondents were also unanimous (98%) in their demand for seeing specific security improvements from their cloud providers, including communicating security issues faster and following consistent security frameworks.