decrypting myths
with that of other
customers. Many
companies would feel
uncomfortable with that
situation from a security
perspective. It also lessens
the ability of customers to
control where their data resides in
the cloud on a granular level.
3. Does it have a global cloud footprint?
The closer the gateway is to the user,
the lower the latency and the better
the experience.
4. Can my firm geo isolate where
our employees’ data resides in
the cloud? This is an important
feature of GDPR and ensures that
firms can meet their data privacy
responsibilities to their employees
more easily.
Security should shift
to focus on the user
and securing access
to data as it resides
across multiple
third-party clouds.
With an appliance
‘stuck’ in a data
centre it effectively
negates many of the
benefits of the cloud.
Avoiding uneasy implementations
As frustrating as some of these
experiences have been, they can be
mitigated entirely. All firms should ask
www.intelligentciso.com
|
Issue 19
the following of any provider of an
Internet security gateway:
1. Does my organisation get to retain
its IP address when migrating to
the cloud (versus shared IP across
multiple customers)? If so, this can
give much greater control by helping
to identify and prevent certain
(potentially infected) devices from
accessing data in the cloud when
off network.
2. Is my organisation’s data held
separately from other customers?
Many cloud-based providers put
customers on the same data plane,
meaning that it is effectively ‘mixed’
The answer to all four of the above
should be a ‘yes’. It would then mean that
organisations can implement their cloud
security move in a staged and controlled
manner and mean they could move to
the cloud without sacrificing the benefits
derived when deploying on premise.
Just as importantly it would bring
security to wherever their users are.
Being geographically closer means
faster connections and eliminates
latency issues.
It has the effect of making employees
appreciate the experience their corporate
IT gives them rather than resenting it.
Security effectively becomes an enabler
to their work, not a barrier. u
69