Intelligent CISO Issue 04 | Page 79

decrypting myths
to cloud security. You need to look for vendors that are truly multi-cloud ready, with a portfolio of solutions including:
• Cloud-based versions of their traditional solutions, including advanced threat detection such as sandboxing
• Centralised security management, logging and reporting, as well as support for multiple hypervisors
• Centralised security information and event management( SIEM)
• The use of connectors, cloud access security brokers( CASB) and APIs to create a single, consistent cloud security strategy preferred security vendors and the cloud providers you are considering when making buying decisions but to also maintain a close watch on how these relationships evolve over the course of a solution lifecycle.
6. Managed security service providers have a strong role to play
Managed Security Service Providers( MSSP) have moved swiftly to build value propositions and practices for multi-cloud environments. The MSSP value-add for multi-cloud security covers most traditional customer benefit areas, including vendor consolidation, bridging skills gaps, augmenting staff and enacting pay-as-you-go / pay-for-results business models.
MSSPs are also a good choice for organisations that anticipate frequent changes in their cloud solution portfolios. MSSPs can bring stability to the security dynamics of a solutions portfolio change by offering a‘ you buy it and we’ ll secure it’ approach to multicloud security services delivery.
7. Select security vendors who know the cloud
Nearly every security vendor has slapped a‘ cloud-enabled’ sticker on their solutions. But the truth is, not all vendors are the same when it comes
Also look for vendors actively engaged with as many of the leading cloud service vendors as possible, especially the big five – Amazon Web Services( AWS), Microsoft Azure, IBM Cloud, Google Cloud Platform and Oracle Cloud – to ensure you have the flexibility to take your cloud strategy wherever it needs to go, without worrying about how you will secure it.
8. Change is a constant
Agility is one of the main reasons customers choose cloud-based solutions. With agility, however, comes a state of constant change in terms of the services, applications and resources they need. Likewise, the global threat environment is constantly changing.
As a result, security solutions for multicloud environments need to be able to enable organisations to stay ahead of the changing threat landscape. Cloud computing has taken the world by storm for a very good reason. It’ s the most costeffective and agile way for organisations of all sizes to access the advanced, transformational computing services and technologies needed to compete in the new digital marketplace. Security needs to be adaptable and flexible enough to enable that transformation. u www. intelligentciso. com | Issue 04
79