Only 32% Global Organizations believe Cloud Security is shared responsibility

304

A survey conducted by security firm Gemalto says that only 32% of Global Organizations believe Cloud Security is shared responsibility. Similarly, 34% of them say that ‘security’ is the sole responsibility of the cloud provider.

The 2018 Global Cloud Data Security Study also disclosed some astonishing details about the cloud practices being carried out in SMBs. The survey says that most of the IT head lack awareness and security controls when it comes to protecting sensitive data in public cloud environments.

When the cloud security stats were taken country wise, only 35% of IT practitioners in the UK said that they were careful while sharing sensitive data with third parties via the cloud. And only half of those said that they have separate security policies architected for cloud data.

The survey carried out by Gemalto says that 54% of the firms operating on a global note believe that keeping payment info on the cloud is like inviting the risk of all sorts. While 49% of them said cloud services actually make sensitive data much more vulnerable to hackers.

Joe Pindar, the Director of Product Strategy, Gemalto said that organizations must take responsibility for the data they collect and store. And it takes hackers only one instance to create a major trouble. Pindar expects that GDPR will compel organizations to change their mindset towards data security in the cloud and across their entire network.

Often company heads are in a mindset that data storage on the cloud is their duty and securing it against hackers is the sole responsibility of the cloud services provider. But the CIOs and CTOs fail to understand that cloud services providers just provide customized platforms for their customers. And it is the duty of the customers to share the security responsibility.

This is what was exposed in the survey of Gemalto which is available in a detailed downloadable format in Infosecurity Magazine.

Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security