A full 63% of enterprises are using cloud, big data, internet of things (IoT) and container environments without securing sensitive data.
According to the 2017 Thales Data Threat Report, 93% of respondents will use sensitive data in an advanced technology (defined as cloud, software as a service or SaaS, big data, IoT and container) environments this year—and a majority of those respondents (63%) believe their organizations are deploying these technologies ahead of having appropriate data security solutions in place.
Interestingly though, while concerns about data security in cloud environments remain high, they’ve dropped off since last year. In 2016, 70% of respondents voiced worries about security breaches from attacks targeting cloud service providers (CSPs); in 2017, 59% expressed fears about this. That makes it still the No 1 concern, but by a far smaller margin than just a year ago.
The second biggest concern, cited by 57% of respondents, is “shared infrastructure vulnerabilities”, followed by “lack of control over the location of data” (55%). On the SaaS side, 57% of respondents report they are leveraging sensitive data in SaaS environments – up from 53% in 2016. When it comes to SaaS insecurities, respondents are most fearful about online storage (60%), online backup (56%), and online accounting (54%).
“Most major cloud providers have larger staffs of highly trained security professionals than any enterprise, and their scalability and redundancy can provide protection from the kinds of DDoS attacks that can plague on-premises workloads,” said Garrett Bekker, principal analyst for information security at 451 Research. “Perhaps as a result of the recognition of these public cloud security realities, security concerns overall for public cloud are waning.”