3 Tactics for Maintaining Cloud Security

When asked why he robbed banks, Willie Sutton reportedly replied, “Because that’s where the money is.” Likewise, businesses will always have to battle security issues, because if there’s anything worth having, someone else wants it. By Josh Abraham Maintaining security is (and always has been) something of an

When asked why he robbed banks, Willie Sutton reportedly replied, “Because that’s where the money is.” Likewise, businesses will always have to battle security issues, because if there’s anything worth having, someone else wants it.

By Josh Abraham

Maintaining security is (and always has been) something of an arms race. Cloud security is no different, but because the technology is somewhat new (not like bank vaults) it can feel like you can’t possibly secure your data and applications effectively. But that’s simply not true.

Related: Security in the Age of Digital Transformation

You can use these three practical tactics for keeping your data safe.

Start with the Built-In Protections

Every cloud provider has put a lot of time and effort into creating as secure a service as possible. But it’s possible that the security has not been configured, double-checked, or tested. Reach out to your cloud provider and ask about the practices already in place, and their advice for further securing it. It’s a fast and easy way to get started.

Protect the Data Wherever It Is

Data has three states: in process, in transit, and at rest. Each of these three states has unique vulnerabilities. However, there are also best practices to employ to thwart these weaknesses. Once you pose the question like this: “How can we protect our data when it’s in transit?” the solutions become much easier than if you merely ask “How can we protect our data?”

Related: Why IT Infrastructure Security is Never Tight Enough

Automate Security To Reduce Human Error

Automation isn’t just the process of offloading tasks onto a program. In order to automate, you must first be crystal clear on what you want to accomplish. You have to establish standards, encode best practices, and design application in such a way that automation is even possible. In short, even trying to automate will enable your organization to think much more critically about where the shortcomings in the current circumstances are, and this will make the process of securing your cloud-based applications much more clean and resilient. There is a big difference between manually updating 100 servers and automatically pushing updates to 100 servers!

comments powered by Disqus

What's New