This post was originally published here by Salim Hafid.
Las Vegas, Nevada is an interesting town – add Black Hat attendees into the mix and you find yourself in some fascinating conversations about very real and pressing security issues facing every enterprise. Of note, cloud security was top of mind for every Security Architect, Engineer, and CISO at the conference.
Everyone is asking the same questions: where is the industry moving? What are the security gaps in my cloud environment? How should I evaluate competing solutions?
Below are the top 4 takeaways from Black Hat 2018.
1. Office 365’s built-in security in insufficient – of the attendees we spoke with, many have now deployed Office 365 but have come to realize that control and visibility is limited.
2. CASBs have become multi-purpose platforms – the perception of CASBs as a single-purpose solution for Shadow IT detection has long since faded. Many are now aware of the power of CASBs for cross-app, real-time data and threat protection.
3. BYOD and secure mobility remain critical concerns – the two sided challenge of protecting cloud data while enabling secure mobile access is top of mind for CISOs. Many are on the lookout for a solution to a very real and pressing problem.
4. Unmanaged app challenge is growing – the use of high-risk web apps including file-sharing services, file storage apps, and unsanctioned messaging tools has always been a problem, particularly in regulated industries. Attendees from the financial services sector all had questions around how best to approach the growing use of unmanaged apps and how to mitigate risk.
Where cloud was once a secondary concern and few had deployed any SaaS apps, the growth in cloud adoption coupled with awareness of employees’ unmanaged app usage has driven IT leaders to rethink their security.
Photo:Tripwire
