{"id":51194,"date":"2016-11-10T10:09:36","date_gmt":"2016-11-10T15:09:36","guid":{"rendered":"http:\/\/cloudtweaks.com\/?p=51194"},"modified":"2020-06-06T16:52:37","modified_gmt":"2020-06-06T16:52:37","slug":"cloud-isnt-security-issue-security-opportunity","status":"publish","type":"post","link":"https:\/\/cloudtweaks.com\/2016\/11\/cloud-isnt-security-issue-security-opportunity\/","title":{"rendered":"The Cloud Isn\u2019t a Security Issue; It\u2019s a Security Opportunity"},"content":{"rendered":"

Security Issue<\/strong><\/h1>\n

In order to stay ahead in today\u2019s competitive business landscape, companies need to constantly innovate. Development teams must continually release new products, features or services and cloud technology, along with agile development practices, make this perpetual iterating feasible.<\/p>\n

Cloud technology has undoubtedly enabled companies to innovate quickly and frequently, however, historically it\u2019s introduced a myriad of security concerns, often causing development, operations and security teams to become overwhelmed and distracted. Today, though, security doesn\u2019t have to hold back high-velocity, cloud-based product development cycles. Companies can achieve complete cloud security and compliance without a security issue impacting delivery speed, as long as they use the right tools and best practices across their organization.<\/p>\n

Below are three key tips companies should consider in order to overcome any lingering security concerns and scale quickly and securely in the cloud:<\/p>\n

1. Educate your team<\/h2>\n

For companies moving to a cloud-based infrastructure for the first time, it\u2019s essential to discuss the change and make sure everyone understands how they will be affected before<\/i> any data is migrated over. A key part of this discussion should be explaining that security is no longer just about perimeter defense and prevention; understanding the behavior of your workloads, users and environment is critical knowledge that needs to be shared. It\u2019s important that everyone on the development, operations and security teams understand what all of their assets are doing and what\u2019s taking place within the cloud workload at all times, as this is the best way to detect real cloud security threats <\/span>as soon as they take place.<\/p>\n

2. Track the ephemeral<\/h2>\n

Back in the days of \u2018racking and stacking,\u2019 it was easy to know what servers you had and where they were. But with cloud-based infrastructures, one of the key value propositions is elasticity: you might spin up an EC2 Instance or cluster, for instance, do some data analysis for an hour or two, and then turn it off. There are advantages to such elasticity; however, it\u2019s crucial to also have the ability to go back in time and view activity to ensure compliance and potentially investigate any risks. Additionally, as you\u2019re building up and burning down, you want to know that those transient systems and workloads were compliant with your security posture. All too often companies focus on catching cloud security incidents only when they\u2019re happening. But to remain consistently secure and compliant, security teams need to be able to \u2018rewind\u2019 and look at instances that may no longer exist.<\/p>\n

3. Embrace software-defined everything<\/h2>\n

The beauty of the software-defined nature of the cloud is that it can actually make security teams\u2019 jobs easier; they\u2019re able to inject themselves throughout the infrastructure landscape and lifecycle. They no longer need to figure out how to capture information from switches, routers, and other devices at various layers of the network and try to correlate the data, because it\u2019s all tied together. Additionally, integrations with tools like PagerDuty and Slack enable internal dialogues that empower non-security team members to collaborate on detection and response to potential issues. And when it\u2019s time for security teams to intervene and investigate, deep audit trails make it possible to track not just whether a user logged in, but what processes they kicked off (and whether it was really them<\/em>).<\/p>\n

Some companies think cloud technology introduces a new layer of vulnerability, however in reality, it\u2019s just the opposite. The cloud presents companies with an opportunity to evaluate their security requirements and reconsider their strategy and processes. It can enable security teams to focus on more strategic initiatives and also improve collaboration with Operations<\/a> and Engineering teams. This, in turn, allows development, operations and security teams to spend more time on projects that drive real business value and less time frantically checking for potential security gaps.<\/p>\n

Don\u2019t let a past security issue prevent your company from migrating to the cloud and reaping its benefits. Discuss the change in detail and address any concerns with everyone in your organization well in advance. Track historical instances in order to ensure security and compliance, and consider implementing a cloud security solution to help gain deep insight into your environment in real-time, because software-defined everything is only possible with complete visibility (and vice versa<\/em>).<\/p>\n

By\u00a0Chris Gervais<\/p>\n","protected":false},"excerpt":{"rendered":"

Security Issue In order to stay ahead in today\u2019s competitive business landscape, companies need to constantly innovate. Development teams must continually release new products, features or services and cloud technology, along with agile development practices, make this perpetual iterating feasible. Cloud technology has undoubtedly enabled companies to innovate quickly and frequently, however, historically it\u2019s introduced […]<\/p>\n","protected":false},"author":386,"featured_media":51177,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_breakdance_hide_in_design_set":false,"_breakdance_tags":"","footnotes":""},"categories":[3,4,5,6],"tags":[],"acf":[],"_links":{"self":[{"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/posts\/51194"}],"collection":[{"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/users\/386"}],"replies":[{"embeddable":true,"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/comments?post=51194"}],"version-history":[{"count":0,"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/posts\/51194\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/media\/51177"}],"wp:attachment":[{"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/media?parent=51194"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/categories?post=51194"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cloudtweaks.com\/wp-json\/wp\/v2\/tags?post=51194"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}