Cyber security incidents and misconceptions both increase as critical ERP systems migrate to the cloud

Published: Thursday, 17 January 2019 09:16

The Cloud Security Alliance (CSA) has released the findings from its first research survey on ‘Enterprise Resource Planning (ERP) Applications and Cloud Adoption’. The study offers insight into cloud preparation and migration, the features and benefits gained, and the security and privacy challenges for ERP systems in a cloud environment.

According to the survey, 69 percent of organizations are migrating data for popular ERP applications to the cloud, moving to major cloud infrastructure-as-a-service providers, with the overwhelming majority, almost 90 percent, stating that these applications are business-critical.

In line with the top three migration concerns - moving sensitive data followed by security and compliance - the research finds that attackers are evolving, too. Over half of the survey respondents stated that they expect security incidents in the cloud to increase in the next year.

When it comes to accountability, there are troubling misconceptions: while 60 percent of survey respondents claim that they feel the cloud service provider is responsible for a breach, 77 percent believe that it is the responsibility of the organization itself to secure their ERP applications. Third-parties are held least accountable and responsible. This perception gap shows that organizations need to take more ownership of their cloud-hosted business-critical applications.

The study, which was sponsored by Onapsis, surveyed 199 managers, C-level executives, and staff from enterprises in the Americas (49 percent), APAC (26 percent) and EMEA (25 percent).

Other key findings included:

Read the full report (registration required).