Hybrid cloud environments: the state of security
- Published: Tuesday, 07 November 2017 16:06
Most enterprises face major challenges when managing security across their hybrid enterprise networks both during and after cloud migrations, according to the new ‘Hybrid Cloud Environments: The State of Security’ survey from AlgoSec.
The international survey of 450 senior security and network professionals reveals the insecurities around enterprises’ hybrid cloud strategies. While nearly a third (32 percent) plan to increase their public cloud usage in the next 12 to 18 months, the majority have significant concerns about cyber attacks and breaches in their hybrid environments, and encounter problems with their visibility and security management processes.
Key findings from the survey include:
- Respondents’ greatest concerns about their applications in the cloud are cyberattacks (58 percent) and unauthorized access (53 percent), followed by application outages and misconfigured cloud security controls. These concerns are hampering wider use of public clouds, with nearly 40 percent of respondents saying security is inhibiting further adoption of cloud platforms.
- The biggest security management challenges enterprises face in hybrid environments are a lack of visibility (63 percent) and managing security policies consistently (61 percent). Demonstrating compliance and managing a mix of traditional and virtual firewalls and cloud security controls were also cited as major issues.
- Respondents reported a range of problems when migrating applications to public clouds. 44 percent had difficulty managing security policies post migration, 32 percent had difficulty mapping application traffic flows before starting a migration project, and 30 percent reported their applications did not work after the cloud migration.
- 26 percent of respondents said they use automation to manage security in their hybrid environments, with 20 percent using manual processes. Enterprises that used automation said the top reasons for doing so were speed and accuracy of security changes, ability to speed up migrations to the cloud, providing audit reports and enforcing compliance, and helping to overcome staffing limitations.
Conducted in Summer 2017, the survey polled 450 C-level executives, and senior security and network professionals in organizations worldwide, from a range of industry sectors. All the companies that participated in the survey were required to have at least some of their business workloads in the cloud.
Read the report (PDF).