Intelligent CISO – Research reveals businesses believe cloud apps make them targets

intelligent-cisoAccording to new research from Thales, almost half (49%) of businesses believe cloud apps make them a target for cyberattacks.

Surveying 1,050 IT decision makers globally, Thales’ 2019 Access Management Index revealed that cloud applications (49%) are listed in the top three reasons an organisation might be attacked, just behind unprotected infrastructure such as IoT devices (54%) and web portals (50%).

Jason Hart, Cybersecurity expert at Thales, added: “It’s positive to see the UK ahead of its counterparts in using the right expertise in the right places. Giving CISOs the final decision on cloud access management is the most logical thing because they have the situational awareness to understand the risks facing the business and how to stop it more than anyone else. However, being ahead of the global average isn’t enough as a huge majority are still not giving the CISO or equivalent the final say, leaving most UK businesses exposed in the long run.”

To read the full article click here.

CXOToday.com – CXOs Still Wary Of Cloud Data Security: Study

cxotodayA new study on cloud data security provides insights into the shaken confidence in the cloud. According to the report, more companies are selecting cloud providers because they will improve security. However, despite its increased use, payment and customer data still appear to be at risk. The security has further increased from 12% of respondents in 2015 to 26% last year. [Read the full report here]

”To solve both of these challenges, enterprises should have control and visibility over their security throughout the cloud, and being able to enforce, develop and monitor security policies is key to ensuring an integrity,” Jason Hart, vice president and CTO of data protection at Gemalto said.

“The cloud is storing all types of information from personally identifiable information to passwords to credit cards”. In today’s world, it’s an easy deal to get access to unauthorized data, the data can be of any kind, for eg – customer information, email, consumer data, employee records etc. All the data, is associated with some kind of risk value to itself. All the customers will ensure the usage of the right methods to attain high privacy of their data, once they identify the risk linked to the leak of the data,” he added.

The beginning started off on a good note for leveraging the cloud, however the organizations were concerned about its security. “Having tracked the progress of cloud security over the years, when we say ‘confidence in the cloud is up,’ we mean that we’ve come a long way”. Security has always been a concern and continues to be”.

“Security in the cloud can be improved if the security control is applied to the data itself.” Hart further added.

 

To read the full article click here.

Feb. 27th 2018 – Webinar – Ponemon Research: Top Trends in Cloud Security

cloud-security-infographicJoin us to hear the findings from Gemalto’s new survey with the Ponemon Institute on how CSO’s view cloud and security
Live online Feb 27 2018 4pm – 5pm (UK), or after on demand
Presented by:
Larry Ponemon, Chairman and Founder of the Ponemon Institute and Jason Hart, CTO office for data protection
To register for this webcast, or watch it on-demand click here.

Search Security – Challenges in cloud data security lead to a lack of confidence

searchsecurityA new study on cloud data security provides insights into the shaken confidence in the cloud. Despite its increased use, payment and customer data still appears to be at risk.

“The cloud is storing all types of information from personally identifiable information to passwords to credit cards,” said Jason Hart, vice president and CTO of data protection at Gemalto. “In some cases, people don’t know where data is stored, and more importantly, how easy it is to access by unauthorized people. Most organizations don’t have data classification policies for security or consider the security risks; instead, they’re worrying about the perimeter. From a risk point of view, all data has a risk value.”

“Having tracked the progress of cloud security over the years, when we say ‘confidence in the cloud is up,’ we mean that we’ve come a long way,” Hart said. “After all, in the beginning, many companies were interested in leveraging the cloud but had significant concerns about security.”

To read the full article click here.

IT Security Central – How to Ensure the Security of Your Cloud Storage in 2018: The Top Experts Speak

itsecuritycentral_4We’ve heard of the challenges of Amazon S3 Buckets and the exposure of customer data to the world wide web. When cloud storage technology emerged, the new technology had plenty of hype. Companies flocked to the new technology, and they started integrating it into their daily work structure. However, security was usually overlooked, limitations not put into place and nonessential employees given administrative access to make important changes to data.

“Organizations are benefiting from the convenience that the cloud offers along with its scalability and controlled costs. Though these are great advantages, businesses shouldn’t lose sight of the security of the information they’re inputting into the cloud. Simply adopting cloud services does not guarantee that data will be secure as there are additional steps to be taken to do so.

With that said, it is crucial for organizations to use robust authentication methods to access information and applications in the cloud. Proper controls such as encryption and tokenization should be placed at the source of the data regardless of where it is placed. Organizations will be more secure and less susceptible to data breaches after incorporating these measures.”

To read the full article click here.

The Economic Times – 49% Indian companies not likely to secure sensitive data in cloud: Survey

economic_timesMUMBAI: While an overwhelming majority of global firms have adopted cloud services, there is still a wide gap in the level of security precautions applied by them, a survey has revealed.

Almost half of Indian organisations say they are not likely to secure sensitive data in the cloud, according to the ‘2018 Global Cloud Data Security’ survey by global digital security firm Gemalto.

“While it’s good to see some countries like Germany taking the issue of cloud security seriously, its a worrying in rest of the world. This may be down to nearly half believing the cloud makes it more difficult to protect data, when the opposite is true,” Gemalto CTO, Data Protection, Jason Hart said.

To read the full article click here

MoneyControl – 49% Indian cos not likely to secure sensitive data in cloud: Global Cloud Data Security Survey

mc_budget_logo18Globally, organisations said only two-fifths of the data stored in the cloud is secured with encryption and key management solutions, it said.

While an overwhelming majority of global firms have adopted cloud services, there is still a wide gap in the level of security precautions applied by them, a survey has revealed.

“While it’s good to see some countries like Germany taking the issue of cloud security seriously, its a worrying in rest of the world. This may be down to nearly half believing the cloud makes it more difficult to protect data, when the opposite is true,” Gemalto CTO, Data Protection, Jason Hart said.

To read the full article click here.

 

IBC 365 – Germany leads cloud security adoption

365-logoThe UK has fallen behind other countries in protecting assets stored in the cloud, according to a study conducted by digital security company Gemalto. The findings revealed regional discrepancies in adopting cloud security, with Germany the front-runner.

Gemalto Chief Technology Officer of Data Protection, Jason Hart said: “ While it’s good to see some countries like Germany taking the issue of cloud security seriously, there is a worrying attitude emerging elsewhere.”

This could be because it is assumed that data protection in the cloud is difficult to maintain, however, Hart stated: “The opposite is true.

“The benefit of the cloud is its convenience, scalability and cost control in offering options to businesses that they would not be able to access or afford on their own, particularly when it comes to security. However, while securing data is easier, there should never be an assumption that cloud adoption means information is automatically secure.”

To read the full article click here.

The New Indian Express – ’49 per cent Indian companies not likely to secure sensitive data in cloud’

nie-logo21MUMBAI: While an overwhelming majority of global firms have adopted cloud services, there is still a wide gap in the level of security precautions applied by them, a survey has revealed.

Almost half of Indian organisations say they are not likely to secure sensitive data in the cloud, according to the ‘2018 Global Cloud Data Security’ survey by global digital security firm Gemalto.

“While it’s good to see some countries like Germany taking the issue of cloud security seriously, its a worrying in rest of the world. This may be down to nearly half believing the cloud makes it more difficult to protect data, when the opposite is true,” Gemalto CTO, Data Protection, Jason Hart said.

To read the full article click here.

Enterprise IT World – Indian CISOs find privacy & data management more complicated on cloud than on-premise

enterprise-it-worldHalf of global organizations believe that payment information (54%) and customer data (49%) is at risk in the cloud; Organizations in India (73%), US (73%) and France (82%) believe that the management of user identities is more difficult in the cloud than the on-premises environment

“While it’s good to see some countries like Germany taking the issue of cloud security seriously, there is a worrying attitude emerging elsewhere,” said Jason Hart, CTO, Data Protection at Gemalto. “This may be down to nearly half believing the cloud makes it more difficult to protect data, when the opposite is true.

“The benefit of the cloud is its convenience, scalability and cost control in offering options to businesses that they would not be able to access or afford on their own, particularly when it comes to security. However, while securing data is easier, there should never be an assumption that cloud adoption means information is automatically secure. Just look at the recent Accenture and Uber breaches as examples of data in the cloud that has been left exposed. No matter where data is, the appropriate controls like encryption and tokenization need to be placed at the source of the data. Once these are in place, any issues of compliance should be resolved.”

To read the full article click here.