Intelligent CISO Issue 24 | Page 55

Research shows companies are embracing cloud-based security tools, but concerns remain are drivers for cloud adoption, but considered less important. However, when asked what concerns they have about moving security tools to the cloud, data privacy (30%) remains high on the list, with unauthorised access (16%), server outages (14%), integration with other security tools (14%), and data sovereignty (13%) also being raised. xabeam, the Smarter SIEM E company, has announced the results of a security practitioner survey that reveal while many companies are beginning to migrate security tools to the cloud, a significant number have concerns. The survey, conducted at the Cloud and Security Expo in London, highlights data privacy, unauthorised access, server outages and integration as key concerns. The survey shows a mixed picture when it comes to firms migrating security tools to the cloud. While just over half of respondents (52%) began migrating to cloud-based security products during or before 2018, around a fifth (18%) waited until 2019, 3% started in 2020, 13% have not yet started and the remainder don’t know when they’ll migrate. Typically, organisations migrate security tools to the cloud to minimise the resources and overhead associated with owning and maintaining on-premises equipment and software. This means security teams can avoid system sizing, maintenance, uptime management and product upgrades. Reducing engineering effort to deploy and maintain new solutions allows security analysts to complete tasks faster and frees engineers up to focus on other projects. The survey results support this, with improvements in monitoring and tracking of attacks (29%) and reduced maintenance (22%) considered the most important gains from using cloudbased security tools. CAPEX reductions (18%), faster time to value (17%) and access to the latest features (13%) While 22% stated migration to the cloud was not a priority for their organisation, the results suggest a lack of understanding about the migration issue as a whole. Around a third (32%) said they did not know what concerns their organisation has about moving security tools to the cloud. Furthermore, despite about a third (32%) of respondents saying they consider it to be too difficult or too risky to migrate security tools to the cloud, nearly half said their preference is to migrate legacy products to the cloud (46%) rather than replace legacy on-premise products with new cloud-native security tools (54%). Organisations are protecting a variety of data types with cloud-based security tools, with email the most widely protected (22%), followed by customer information (21%), file-sharing (20%) and personnel files (18%). “We can expect more organisations to migrate their security tools to the cloud this year as security professionals increasingly see the benefits of hosted cloud offerings, which provide the full functionality of traditional on-premise solutions. Added benefits include reduced cost and maintenance issues, as well as eliminating the need to route cloud data to on-premises data centres,” said Sam Humphries, Security Strategist, Exabeam. u intelligent CLOUD SECURITY www.intelligentciso.com | Issue 24 55