INFOGRAPHIC companies surveyed having experienced at least one security incident in their public cloud environment . Gartner anticipated that over 99 % of cloud breaches will have a root cause of customer misconfiguration . Some blind spots the Vectra report uncovered include :
• 30 % of organisations surveyed have no formal signoff before pushing to production
• 40 % of respondents say they do not have a DevSecOps workflow
• 71 % of organisations say that 10 or more people can modify the entire infrastructure in their AWS environments , creating numerous attack vectors for hackers
Despite these blind spots , the survey showed that companies are taking security seriously .
“ Securing the cloud with confidence is nearly impossible due to its ever-changing nature ,” said Matt Pieklik , Senior Consulting Analyst , Vectra . “ To address this , companies need to limit the number of attack vectors malicious actors are able to take . This means creating formal sign-off processes , creating DevSecOps workflows and limiting the number of people that have access to their entire infrastructure as much as possible . Ultimately , companies need to provide security holistically , across regions and automate as many activities as possible to enhance their effectiveness .” p
Companies need to provide security holistically , across regions and automate as many activities as possible to enhance their effectiveness .
www . intelligentcio . com INTELLIGENTCIO AFRICA 23