From the “Top 10 Signs Your Network and Security Design Might Be Far Behind” Series
Half pregnant. Half secure. Just about anything that is “half” is probably not a good thing. And that certainly holds true with cloud security.
But I get it. Cloud security it far newer to some than others and people generally see it as added risk to move too fast. Measure twice, cut once, they say. Okay, fine. Let’s go with the assumption that moving slower offers less overall risk.
But is it (less risky)?
There’s actually a really simple test that anyone can run to see where they stand on security. Just go run the Security Preview test, both on the network as well as off, and see how you score. Grades A through F await, along with the educational reasoning for each. If you don’t score an [A] and are still running security appliances in the data center that could instead be accessed by all as an everywhere cloud service, then are you really at less risk?
Okay, So Less Risk to Whom?
All too often, people see the cloud as somehow adding risk to their enterprise. “We just need to go slow” or “Hold on, let’s not rush things” are heard often around the IT water coolers. Here’s where reality and perception go their own ways.
- Perception: Cloud security lessens my job security, as I won’t have as much to manage. So there’s risk to my income.
- Reality: Weaker security lessens your job security even more at present, as does spending more than necessary to meet the objectives of the business.
With so many openings for qualified security professional out there, none of this should be a concern for those who are secure in their own positions. For those with perhaps a bit of insecurity and personal anxiety, moving to the cloud and taking things a bit slower will almost surely offer some opportunities, while also reducing your stress.
Your Organization Does Not Want Hybrid Cloud Security
The time has come for ALL traffic that is already on the Internet to be cleaned up by a security platform that is already there, not in the corporate data center. It’s really the only way to scale the security while also reducing costs.
If I can look my CFO, CEO, even the entire board in the eye and say that we have absolutely reached world-class security for all locations, including for our remote users, at fraction of what we used to spend on a mashup of supposed “best of breed” appliances, then that’s a pretty enviable place to be. Even if we are not yet “in the cloud” with our data center, the value statement is still as powerful, if not more so.
Can we elaborate? Sure. The majority of the bad stuff that comes through to us is at the hands of the Internet or the users. So it stands to reason that if we can clean the the Internet better than we ever could, security goes up. The users are now pretty clean as well.
The essential piece here is that it must exist for all services as well as all ports and protocols. This means just using a web proxy service or just a CASB service or just a sandboxing service is not enough. Everything must be in play. And hybrid just doesn’t fit, regardless of depreciation rational or the desire to just take things slow.
At a bare minimum I will always have one site, either a branch office or a primary site, up and running 100% in the cloud. This is absolutely without hesitation. I need my organization and my people to see how