INTELLIGENT BRANDS // Cloud
Five reasons to rewrite cloud security rules
Raj Samani at Intel Security Group spells out five areas that enterprises should review as they progress in their cloud journey .
Whatever specific configuration of your cloud , be it public , private , or a mix of both , there are security risks that are not immediately apparent , ranging from the technical to organisational to issues of governance . Here are five things you need to know about integrating security across your multiple cloud deployments for optimal security .
Shadow IT and data
1 movement Keeping your eye on where your data is located can be more difficult than you think , especially because of shadow IT . The cloud makes it easy for individual departments to have their own cloudbased applications and data storage . But you cannot protect what you do not know exists — and even if you do know it exists , there are still unique issues to solve for . If you think there is no shadow IT in your organisation , think again . In a Frost and Sullivan study , more than 80 % of respondents admit to using non-approved SaaS applications in their enterprises .
Here is the concern , shadow IT makes it possible for data to be stored and processed in the cloud without adhering to corporate security policies . And when users and departments store and share sensitive data in the cloud or run applications in the cloud without IT ’ s knowledge , the enterprise can be exposed in many ways . There should also be regular campaigns to educate department managers about the governance and security issues that go along with SaaS applications and the cloud .
Securing growing east-west
2 traffic Enterprises are moving to virtualised datacenters , including private and public clouds , and beyond that to software-defined datacenters . This has created a new pattern of eastwest traffic from server to server or workload to workload . North-south traffic between client and server has also changed , because servers no longer sit on a dedicated appliance in a datacenter but are virtualised , generally in some kind of cloud
36 INTELLIGENTCIO www . intelligentcio . com