Free Guide
16 Questions You MUST Ask Before Hiring Any IT Company
After the chaotic events of 2020 and the sudden shift to remote work, anyone who isn’t already in the cloud data market is rethinking their stance. Companies discovered exactly why maintaining operational flexibility while improving cyber resilience is critical to the success of today’s businesses. But now, with cloud adoption accelerating and the scale of cloud environments burgeoning, engineering and security teams say that specialized risk and the costs of addressing the dynamics of a potential cloud data breach are also on the rise – especially in three crucial areas.
In the recently released survey “The State of Cloud Security 2021” conducted by Fugue and Sonatype, researchers spoke with 300 cloud professionals including cloud engineers, security engineers, DevOps specialists and security architects to gauge the level of risk associated with cloud data hosting as well as the major pain points that were keeping them from improving cloud security. By far the biggest takeaway is the fact that 36% of organizations surveyed suffered a serious data security incident like cloud data breach in the past 12 months.
An increasingly dangerous cybercrime landscape makes that deeply concerning for anyone who is using cloud data technology. The reasons that IT professionals are pointing to as the culprit for many of those breaches are concerning as well because they’re nothing extraordinary. The vast majority were not caused by criminal hacking or cybercrime sources at all. Instead, these companies suffered a data breach or leak in their cloud environment because of a laundry list of avoidable misconfiguration and personnel issues that ultimately led to disaster.
The Primary Causes of Cloud Data Breaches
The IT professionals surveyed had plenty of targets to point fingers at as influences of a possible cloud data breach and none of them are cybercriminal hackers.
That’s not just a 2020 one-off either. Cloud data security is just as risky in 2021 and that risk is rising. In fact, researchers discovered that eight out of ten are worried that they’re vulnerable to a major cloud data security incident. Three major pitfalls stand between businesses and better cloud data security, but all of them can be mitigated.
1 Human Error
It should be no surprise that human error tops the list of cloud data security pitfalls. After all, it tops every other list of cybersecurity blunders. Almost 40% of the IT professionals surveyed cited human error as the culprit for a cloud data breach or leak in their organization. Training challenges are a big factor here, even when it comes to the training of the IT teams managing the nuts and bolts of the cloud data environment – 35% of the professionals surveyed cited challenges around sufficiently training their cloud teams on security as a major pain point.
2 Resource Scarcity
The demand for cloud security experts is strong and rising as it continues to outpace supply. Companies are definitely in the market for low to mid-level security personnel with cloud security experience, but that market is extremely competitive, leading to staffing shortfalls. The need for experienced engineering, management and architecture personnel is especially large and equally as problematic. Experts estimate that we’re experiencing a 3.12 million worker shortage of skilled information security workers and that number is expected to rise.
3 Overburdened Teams
Overburdening is a chronic problem in IT and it is often especially burdensome to cybersecurity teams. In a study of IT team challenges, overwork, burnout and retention issues were overwhelmingly cited as the biggest pain point for corporate IT leaders. Many IT leaders are also frustrated with how their companies are addressing the issue. Although they feel that they’ve consistently raised the alarm, almost 60% of respondents said they do not believe their organizations are taking it seriously or doing enough to alleviate pressure on their overburdened IT teams, leading to more human error or training-related data security incidents
Source: ID Agent