decrypting myths
Multi-cloud
security checklist:
Eight things
CISOs need to
remember
As more and more organisations
adopt a multi-cloud
environment, the breadth and
depth of the attack surface has
expanded rapidly, increasing
the complexity of security
management. Here, John
Madisson, Senior Vice President
– Products and Solutions at
Fortinet, outlines eight security
issues that CISOs should
consider when implementing a
multi-cloud strategy.
enterprise using as many as 91 different
cloud applications.
The agility conferred by being able to
immediately add and/or drop services
to a cloud portfolio, or dynamically scale
to meet shifting resource demands, are
some of the key reasons why enterprises
have turned to cloud computing in a big
way. These same issues, however, have
complicated the creation and maintenance
of a consistent security strategy.
John Madisson, Senior Vice President –
Products and Solutions at Fortinet
Recent market research indicates 95%
of all organisations use some form of
cloud-based computing resource. While Infrastructure-as-a-Service (IaaS)
and Platform-as-a-Service (PaaS) clou d
vendors are responsible for securing
their cloud infrastructures, customers are
responsible for protecting the applications,
websites, environments and services they
run on those cloud environments.
Furthermore, 85% of these enterprises
have a hybrid cloud infrastructure that
leverages multiple private and public
cloud resources, with the average Things are a bit different for Software-
as-a-Service (SaaS) and Applications-
as-a-Service (AaaS) offerings, where
the service provider retains the primary
1. Multi-cloud computing is the
new normal
www.intelligentciso.com
|
Issue 04
2. Cloud security is often
an ambiguously shared
responsibility
77