Cloud technology, for many years, enticed agencies looking for savings and efficiencies. Organizations pursued “cloud-first” policies that migrated data and applications away from onsite infrastructure and into the control, at least in part, of cloud service providers. But the cloud was too-good-to-be-true for agencies that faced cost overruns — and many did. And lately, malicious actors have gotten exceptionally good at exploiting cloud vulnerabilities.
There isn’t one way to secure your cloud platform, unfortunately. You need a holistic, zero-trust approach that combines security controls with cyber policies and procedures. Strong encryption and access rules, automated updates, clear visibility, and detailed incident response plans are all critical. Knowing who’s responsible for what should go without saying. And repatriating data — bringing it back on premises, for example — is often a commonsense answer.
“Agencies have to comply with stringent regulations … so that means they need a really robust [security] framework, all while managing the complexities of the cloud environment,” said Garrett Lee, Regional Vice President for Public Sector in Broadcom’s Enterprise Security Group. “Cloud, you know, solves some problems, but it also creates some others.”
In this video interview, Lee explores both the opportunities that cloud computing offers and how to confront its security challenges. Topics include:
- What a holistic approach to cloud security entails
- The cost and security drivers behind data repatriation, and why they matter
- How to secure four critical domains: endpoints, data, the cloud, and networks
Leave a Reply
You must be logged in to post a comment.