Article

A sunny forecast for cloud security

The cloud is firmly established as the next wave of business computing. The good news is, it can also lead to better cybersecurity.

By Bill Clark

Fri 17 May 2019 @ 10:38

Cybercrime now represents a huge underground economy. According to one study, cybercrime now generates $1.5 trillion dollars globally. No, that’s not a typo. Trillion. To put that in context, there are only a dozen countries in the world with a GDP greater than $1.5 trillion.

Cybersecurity is, therefore, a huge concern for every organisation that uses IT – or at least it should be. While fears about the security of operating in the cloud are common, the reality is something different. Gartner, for example, says that the move to the cloud actually improves security. The analyst group makes three points that should help any CISO sleep better:

  • 60 per cent of enterprises that implement appropriate cloud visibility and control tools will reduce security failures by one-third
  • From now until 2020, public cloud infrastructure as a service (IaaS) workloads will suffer at least 60 per cent fewer security incidents than those in traditional data centres
  • From now until 2022, at least 95 per cent of cloud security failures will be down to customer mistakes

Silver linings come with clouds

The cloud offers real advantages for cybersecurity. With 54 per cent of companies fearing they may outgrow their current cybersecurity solution, the cloud provides security that can scale. With mobile devices joining the network, or the Internet of Things increasing the possible points of entry, the cloud maintains security by tapping into the expertise of the cybersecurity teams at those cloud providers and rolling out updates quickly.

This leads into another way the cloud helps organisations improve cybersecurity: Staffing. There is a well-documented shortage of cybersecurity talent. Even if a company wanted to run all cybersecurity on premises with its own solutions, it might not be able to recruit the staff needed to handle operations.

You still need your own cybersecurity staff, of course, but these valuable staff can now use the tools available to them to ensure your systems take advantage of the benefits that come with the cloud.

A report by Crowd Research Partners identified the biggest perceived threat to cloud security as the misconfiguration of cloud platforms, cited by 62 per cent of respondents. Unauthorised access through improper credentials or access controls (55 per cent), and insecure interfaces (50 per cent) were also concerns.

Your cybersecurity team is tasked with dealing with these threats but faces its own problems. Respondents ranked their top three security control challenges as visibility into infrastructure security (43 per cent), compliance (38 per cent) and setting consistent security policies across cloud and on-premises environments (35 per cent).

On top of all that, your team is also keeping your on-premises resources secure. They can do it, but only with the right tools.

Getting to the silver

A next generation SIEM platform provides your hard-working security team with an unprecedented single-pane view into your enterprise. By giving cybersecurity professionals this insight, the time to detect threats is reduced and, consequently, the time to respond. The best systems can pull and analyse data from anywhere: On-premises, from suppliers or from the cloud.

And cloud is the next step for advanced security, with the introduction of solutions like LogRhythm Cloud.

According to Chris Petersen, co-founder and chief product and technology officer at LogRhythm, this technology provides “the same feature set and user experience” as LogRhythm’s NextGen SIEM Platform to detect advanced threats and ensure “the most rapid response possible”.

This is unlike other cloud-based SIEM solutions which are “functionally limited when compared to their on-prem offering”.

Regardless of the vendor(s) you choose, ask how they secure the cloud and how they operate in the cloud. Because the cloud is the future of your business, which can also be some good news for your cybersecurity health.

Learn more

Discover how LogRhythm is using cloud computing to boost customers’ security capabilities.