- Cloud migration yields security gains, even in the heavily regulated financial services and healthcare sectors, according to a new report commissioned by digital services provider Presidio.
- Just over half of the more than 1,000 IT leaders surveyed by Censuswide for Presidio in April and May said cloud technologies make it easier to keep up with changing data privacy and infrastructure security regulations, including 57% of respondents from financial services companies and 56% of healthcare executives.
- The survey highlights the paradoxical relationship between cybersecurity and modernization. Three in five respondents believe cloud enables faster and more flexible threat response capabilities, but the same number see cyber concerns as both an obstacle to and a reason for cloud adoption.
Efficiency gains, innovation opportunities and CapEx reductions are, by now, obvious motivations for aggressive cloud adoption. Caution fueled by security and compliance concerns embody a looming counterforce, particularly in highly regulated sectors.
Many companies continue to rank security challenges as the top impediment to cloud adoption, a dynamic that’s particularly acute in finance and healthcare, according to Presidio.
These concerns are not unfounded. Cloud security professionals expect an uptick in cloud data breaches over the next year and SaaS application proliferation has opened up new threat vectors, according to recent reports.
“The hardest piece of this whole thing is secure connectivity,” said Presidio CTO Rob Kim in an interview with CIO Dive. “It's only gotten more difficult, especially when you have to distribute data and application access to a remote workforce."
“You need to develop a completely different security strategy, apply policies to enforce that strategy, and deploy technologies to make sure that you're fulfilling compliance,” said Kim
Better alignment between providers and compliance standards, coupled with clearer security guidance from CISA, NIST and the Cloud Security Alliance has given companies a clearer way toward improved security and compliance, according to the report.
The perceived cost of new cyber solutions, lack of clarity around cloud security protocols and trouble sourcing cyber talent are the three primary roadblocks companies are grappling with.
Buy-in on the concept of cloud is not an impediment.
“AWS and Microsoft don't need help convincing clients to do cloud native-based development work,” Kim said.