Friday, December 05, 2014

How to keep a lid on your cloud security budget

Every business wants to maximise profit while minimising expenditure. In the world of IT that increasingly means moving from a capital expenditure-focussed, infrastructure-heavy approach to an outsourced and infrastructure-light one courtesy of the cloud. Being able to manage spending through controlled budget expectations is a key driver helping to deliver the cloud into enterprise strategies across the globe; but how does keeping a lid on spending sit with keeping that cloud secure?

How to secure the hybrid cloud

Increasingly, the cloud is becoming mixed up; and that's not a bad thing. Enterprises of all sizes are starting to conclude that more often than not a mixture of public and private cloud solutions provide the best operating efficiencies and value proposition. This is, in a nutshell, the hybrid cloud. Wikipedia defines it rather well as being "a composition of two or more clouds that remain distinct entities but are bound together, offering the benefits of multiple deployment models" and you can explore the concept further through some interesting Cloud Pro case studies. Time and time again you will find yourself being advised to audit your data and applications, keeping the highest risk stuff within a private cloud environment while farming the lower risk functions and data out into the public cloud. It's good enough advice. Indeed, I have often given it myself, but the question is raises which is not so often answered is how do you then ensure that this overall hybrid cloud entity is secure?

How to avoid becoming a victim of cloud insecurity

Security concerns sit at the top of the migration agenda for those enterprises yet to make the move into the cloud, and remain a focus for even the earliest of cloud adopters. Quite rightly so, in the light of an increasingly diverse threat landscape and a maturing average perpetrator skill profile. However, just as securing your own network infrastructure and the data within it isn't exactly rocket science, nor is securing your data in the cloud. Without wishing to sound too patronising, it really is just a case of getting the basics right and never resting on your laurels. With this in mind, here are our top 10 steps to take for ensuring you are ahead of the security-related challenge curve and avoid falling victim to cloud insecurity.