The Cloud Security Alliance (CSA) has revealed findings of a survey – Understanding Cloud Data Security and Priorities – which sheds light on the data security trends in cloud computing.
As the world embraces remote and hybrid working, many businesses rely on cloud platforms for data storage. The industry-wide survey suggests that companies are not adequately utilising data discovery tools to protect what is stored in the cloud – leaving firms vulnerable with limited visibility of this critical information.
We were interested to read the findings of The Cloud Security Alliance report as data protection obligations are paramount to safeguard against threats to sensitive data.
Delving into the report, it reveals how firms are struggling with securing and tracking sensitive data in the cloud with only 39% of respondents confident with their ability to ensure data is secure in the cloud. The findings go on to reveal that 40% say that only half or less of sensitive data in the cloud has adequate security.
When it comes to “dark data” issues, firms are facing problems around silos between departments and staffing concerns such as lack of skills/knowledge (50%), lack of interdepartmental cooperation (47%), and lack of staff resources (44%).
Firms should take serious note of these findings. The report triggers important questions – Do you know the true status of your company’s Information Security Management System (ISMS) and how your customers’ data is being protected as technology evolves?
Protecting customer information
Businesses have a responsibility to protect their customers’ data and prevent devastating breaches – thankfully, there are measures that can be taken.
One key tip is to encrypt information – both in storage and on its way from one point to another.
Limiting access also helps with preventing any accidental leaks by having protocols that only allow certain employees who absolutely need it be able to see sensitive information.
Don’t forget about regularly testing security systems and training staff members too. Taking those extra steps will help keep customer confidence high!
Internal auditing
So, is it time for your company to action and assess your organisation’s current Information Security Management System?
It is crucial to monitor changes in the external environment that could impact the security of information systems. Therefore, it may be time for an internal audit to ensure data security that will protect your firm from potential cyber threats.
At Inavate, we take a holistic approach when it comes to internal auditing for our clients. We know that one size does not fit all. So, we really get to know your company, understand it’s culture, goals, core products and services. This enables us to advise a company on how to best protect sensitive data, prevent security breaches and ensure that their information security management system continually evolves.
Source: The Cloud Security Alliance industry-wide survey conducted with BigID, a data intelligence platform for privacy, security, and governance.
