It's no secret that cloud computing has become a key component of countless businesses' IT strategies. Deploying cloud services is a necessity, as only by leveraging these resources can a company hope to achieve the level of efficiency, effectiveness and flexibility necessary to become and remain competitive in their industries.
This means that cloud security, always important, has become absolutely critical for virtually every organization. Fortunately, the vast majority of business leaders understand and appreciate this reality. Unfortunately, these same decision-makers frequently overlook a key aspect of successful cloud security efforts: governance. As a recent report from the Cloud Security Alliance revealed, companies are not paying as much attention to cloud governance concerns as they should.
The CSA report included insight from more than 200 IT and security professionals from companies based around the world. The study found a number of major security shortcomings among participating companies. For example, 72 percent of responding IT managers acknowledged that they did not know how many shadow IT apps were being used on their corporate networks, despite wanting this information.
But the biggest shortcomings could be found in the realm of cloud computing. The CSA survey found that nearly three-fourths of companies are now moving forward with cloud deployment plans. However, among companies with 5,000 or more employees, only 35 percent indicated they have established cloud governance committees and 26 percent had set up security awareness training programs. Among smaller firms, these numbers were even worse: Only 12 percent had established cloud governance committees and 20 percent had security awareness training programs up and running.
These numbers should be alarming for anyone worried about cloud security. Without a solid governance plan in place, businesses will be at risk, regardless of the quality of their other cloud security-related efforts. Yet as this survey revealed, a relatively small percentage of businesses have seen it fit to establish committees dedicated to establishing these policies.
The question businesses face as they move increasingly toward cloud-based operations is not whether they need to embrace governance, but rather how to best go about establishing sound strategies in this area.
To this end, a high-qualitypartnership with an established cloud services provider is vital. With the assistance of a firm like Datapipe, businesses can develop cloud governance strategies that take into account their unique goals and requirements, all while maximizing the safety and security of the organization as a whole.