3 dominant trends that will drive cloud security in
the coming years
Nowadays, you don’t have to be a
security expert to recognise just how much the threat landscape has evolved in
the last ten years – you only have to read the all-too-frequent headlines about
the latest data breach.
2014 saw significant change in the
IT security industry – the cloud became real as large enterprises furthered
adoption. Changes in infrastructure environments require changes in how
organisations protect against threats. CIOs are now moving their focus from
preventing a breach to accepting it and the requirement for fast detection,
analytics and identifying vulnerabilities before they are exploited.
Here are the dominant trends that
are shaping cloud security for the next few years.
1.
Security designed for the cloud – using the DevOps model
Companies should be demanding security
solutions that are specifically designed for the cloud, programmable and highly
automated, and able to deploy and auto-scale with minimal effort.
2.
Big data security analytics
Conducting big data security
analytics is not sufficient on its own; we have to be able to incorporate
threat intelligence which, in turn, has to be specifically tuned for cloud
environments. Integration between cloud and security providers is crucial. You
not only have to build these cloud security technologies from the ground up,
but you have to make sure that the cloud provider shares enough access to their
underlying infrastructure with the providers in order to make these things
work.
3.
Cloud threat intelligence
Threat intelligence, one of the most
active fields of research in security today, includes context, indicators of
compromise, actionable data about malicious actors and identifying further
threats with high fidelity. Threat intelligence augments security analytics for
both pre and post compromise by providing insight into malicious IPs, domains,
urls, new attack models, tools and techniques.
Cloud computing has driven us into a new era of data
security, not only in terms of the challenges and risks associated with
cybercrime, but also the tools available to protect both data and IT
infrastructure, wherever it is located. How we create and deliver applications,
how we log and analyse security incidents at scale, how we derive context and
deep threat intelligence, and how the security industry and customers start to
share cloud threat intelligence is going to drive the security market focus for
the next few years.
Posted by Ben Ros
No comments:
Post a Comment