advertisement
Facebook
X
LinkedIn
WhatsApp
Reddit

How cloud solutions can reduce your cybersecurity risks

Over the last year we’ve seen a frantic push toward cloud-based solutions as working from home became the new normal.

While cloud-based solutions are convenient they also offer an additional layer of security, according BT’s client business director, Todd Schoeman.

“It may seem counterintuitive, but organisations can better guard against today’s constant wave of security threats – or at least reduce some of their risk burden – by accelerating their move to the cloud, rather than stalling it. Simply put, using public cloud services shifts some of the responsibility for the underlying infrastructure onto the providers. And all of them are highly motivated to keep on top of security,” Schoeman explains.

That mention of “some of the responsibility” is important as it is still up to the organisation to ensure it is properly secured.

With that having been said, patching cloud systems is often done by the cloud provider and while there is some onus on the business to check for updates, for the most part updates aren’t really within your control.

Should your business be running cloud-based applications, however, patching and updates will be your responsibility. That said, Schoeman says that the cloud could also assist in this regard.

“Where you’re using cloud to run software that you’re accountable for, there are ways to keep critical services up to date more easily. You can use the elasticity of cloud to take individual components out of service without impacting availability – if they’re designed correctly,” the director adds.

We cannot stress enough that there is no such thing as a perfect security solution and while cloud solutions can reduce risk, caution must still be exercised and vigilance is required.

“Understanding whether you have been compromised in any way is critical. In general, the large common cloud systems bring two clear positives. First, that such systems are public and accessible to all, and second, that the incentive to fix them if something goes wrong is very high. Often, this makes them safer than personal or organisation-specific cloud systems,” writes Schoeman.

Essentially then, securing the cloud is not the same as securing your own infrastructure which means that your approach to security will require a bit more thought and are likely different solutions to those you’d select for your own infrastructure.

It’s important then to do your due diligence and select a cloud-provider which matches your specific business needs.

Not everything needs to move to the cloud immediately but it’s better to start the process sooner rather than later.

“It’s important to realise that many of your existing security controls will remain effective. Rather, you should focus on the gaps that are a priority for your organisation and leverage a move to the cloud to secure these,” Schoeman concludes.

advertisement

About Author

advertisement

Related News

advertisement