Moving to cloud without security strategy increases data threat
Many organizations are in the midst of a migration to the cloud, and if cyber security is not a key part of the strategy, the risk of falling victim to attacks is real and growing.
A new survey by Netwrix Corp., which provides a platform for user behavior analysis and risk mitigation in hybrid environments, identifies concerns organizations have about cloud security, the threats they dealt with over the last year, and their plans for further cloud usage and security enhancements.
The survey of 853 organizations conducted in November 2017 shows that the most common cloud security concerns are the risk of unauthorized access (cited by 69 percent), the risk of malware infiltrations (50 percent), and the inability to monitor the activity of employees in the cloud (39 percent).
A sizeable number of organizations (45 percent) perceive their own employees to be the biggest security risk. Even though the majority of attacks they experienced over the year were external, organizations blame their own IT staff (39 percent) and business users (33 percent) as much as or more than their cloud providers (33 percent).
Organizations are not ready to address the insider threat because they have only partial visibility into activity within their IT infrastructures. The share of organizations that have complete visibility into the activity of IT staff (28 percent), business users (17 percent), third parties with legitimate access (12 percent) and providers (9 percent) is low and needs to be improved, the report said.