Intelligent CISO Issue 04 | Page 79

decrypting myths
to cloud security . You need to look for vendors that are truly multi-cloud ready , with a portfolio of solutions including :
• Cloud-based versions of their traditional solutions , including advanced threat detection such as sandboxing
• Centralised security management , logging and reporting , as well as support for multiple hypervisors
• Centralised security information and event management ( SIEM )
• The use of connectors , cloud access security brokers ( CASB ) and APIs to create a single , consistent cloud security strategy preferred security vendors and the cloud providers you are considering when making buying decisions but to also maintain a close watch on how these relationships evolve over the course of a solution lifecycle .
6 . Managed security service providers have a strong role to play
Managed Security Service Providers ( MSSP ) have moved swiftly to build value propositions and practices for multi-cloud environments . The MSSP value-add for multi-cloud security covers most traditional customer benefit areas , including vendor consolidation , bridging skills gaps , augmenting staff and enacting pay-as-you-go / pay-for-results business models .
MSSPs are also a good choice for organisations that anticipate frequent changes in their cloud solution portfolios . MSSPs can bring stability to the security dynamics of a solutions portfolio change by offering a ‘ you buy it and we ’ ll secure it ’ approach to multicloud security services delivery .
7 . Select security vendors who know the cloud
Nearly every security vendor has slapped a ‘ cloud-enabled ’ sticker on their solutions . But the truth is , not all vendors are the same when it comes
Also look for vendors actively engaged with as many of the leading cloud service vendors as possible , especially the big five – Amazon Web Services ( AWS ), Microsoft Azure , IBM Cloud , Google Cloud Platform and Oracle Cloud – to ensure you have the flexibility to take your cloud strategy wherever it needs to go , without worrying about how you will secure it .
8 . Change is a constant
Agility is one of the main reasons customers choose cloud-based solutions . With agility , however , comes a state of constant change in terms of the services , applications and resources they need . Likewise , the global threat environment is constantly changing .
As a result , security solutions for multicloud environments need to be able to enable organisations to stay ahead of the changing threat landscape . Cloud computing has taken the world by storm for a very good reason . It ’ s the most costeffective and agile way for organisations of all sizes to access the advanced , transformational computing services and technologies needed to compete in the new digital marketplace . Security needs to be adaptable and flexible enough to enable that transformation . u www . intelligentciso . com | Issue 04
79