INTELLIGENT BRANDS // Cloud
Five reasons to rewrite cloud security rules
Raj Samani at Intel Security Group spells out five areas that enterprises should review as they progress in their cloud journey.
Whatever specific configuration of your cloud, be it public, private, or a mix of both, there are security risks that are not immediately apparent, ranging from the technical to organisational to issues of governance. Here are five things you need to know about integrating security across your multiple cloud deployments for optimal security.
Shadow IT and data
1 movement Keeping your eye on where your data is located can be more difficult than you think, especially because of shadow IT. The cloud makes it easy for individual departments to have their own cloudbased applications and data storage. But you cannot protect what you do not know exists— and even if you do know it exists, there are still unique issues to solve for. If you think there is no shadow IT in your organisation, think again. In a Frost and Sullivan study, more than 80 % of respondents admit to using non-approved SaaS applications in their enterprises.
Here is the concern, shadow IT makes it possible for data to be stored and processed in the cloud without adhering to corporate security policies. And when users and departments store and share sensitive data in the cloud or run applications in the cloud without IT’ s knowledge, the enterprise can be exposed in many ways. There should also be regular campaigns to educate department managers about the governance and security issues that go along with SaaS applications and the cloud.
Securing growing east-west
2 traffic Enterprises are moving to virtualised datacenters, including private and public clouds, and beyond that to software-defined datacenters. This has created a new pattern of eastwest traffic from server to server or workload to workload. North-south traffic between client and server has also changed, because servers no longer sit on a dedicated appliance in a datacenter but are virtualised, generally in some kind of cloud
36 INTELLIGENTCIO www. intelligentcio. com