Security Concerns Hamper Public Cloud Migration, Survey Finds
Public cloud adoption is growing rapidly across all industries, but security concerns are preventing widespread adoption. This is largely due to a misunderstanding that cloud providers are responsible for securing customers’ data and applications in the cloud.
This is a key takeaway from a recent survey conducted by security provider Barracuda Networks, which collected responses from 300 IT decision-makers from organizations of all sizes across the U.S. that use public cloud infrastructure-as-a service. The study found 74 percent of IT pros believe security concerns are limiting their organizations’ migration to the cloud, TechRepublic reports.
Cloud Popularity Grows
Despite misconceptions surrounding cloud security, cloud migration is proceeding at a rapid pace. Organizations currently run 44 percent of their infrastructure in the public cloud, the survey found, with respondents expecting this percentage to nearly double in the next five years.
These findings correspond with a recent Capgemini study, which found that by 2020, nearly one-third of new enterprise applications will originate in the cloud, more than doubling today’s percentage.
Who Protects What?
The Barracuda study found that many IT leaders are a bit fuzzy on the public cloud’s shared responsibility model. For instance, 77 percent of respondents said that cloud providers are responsible for securing customer data in the cloud. And 68 percent said that cloud providers are also responsible for securing customer applications.
“This survey confirms what we are hearing from customers and partners — security remains a key concern for organizations evaluating cloud solutions, and there’s confusion over where their part of the shared responsibility model begins and ends,” said Tim Jefferson, Barracuda vice president of public cloud, according to TechRepublic.
For the most part, organizations understand that cloud deployments are more secure than on-premises solutions because cloud providers invest more in security controls than organizations could on their own.
“The organizations benefiting most from public cloud are those that understand that their provider is not responsible for securing data or applications and are augmenting security with support from third-party vendors,” added Jefferson, according to the source.
Security Wake-Up Call
Due to lack of clarity surrounding the shared responsibility model, 30 percent of organizations have not invested in additional security protections for their cloud deployments, the survey found.
To enhance cloud security, businesses with hybrid and multicloud environments should invest in centralized management. Customers should choose vendors who provide a common management scheme to simplify security monitoring. To prevent added cost and complexity, customers should also partner with third-party security providers who support a wide range of ecosystems.