October 30, 2012
According to multiple reports, more companies are choosing to adopt the cloud to store business applications and essential documents on a pay-per-use basis. Some are also using the cloud to implement bring-your-own-device policies into their infrastructures. Despite the opportunities presented by cloud services, those who make the investment are not taking the proper steps to keep information safe.
The recently released Ernst & Young Global Information Security Survey 2012 outlines how institutions are unprepared to block risks. Based on responses from 1,850 polled information executives in 64 countries, the report found that IT professionals are finding it harder to protect the cloud, Dark Reading reported.
According to the survey, 59 percent of respondents said they currently use or plan to employ a cloud service, but 38 percent do not have network security measures in place, Tech Central reported. This proves to be a problem as more cybercriminals are attempting to compromise business networks.
Thirty-one percent of respondents said that their organizations have been victims of more incidents in the past two years than before that time. Most respondents (77 percent) said they have seen an increase in external attacks, but 46 percent found that some assaults were caused by malicious insiders.
According to the report, the majority of businesses (63 percent) do not have a security framework to protect company data, and only 16 percent are confident that their organizations are secure.
To improve the lack of preventative measures and ensure business continuity, many are developing security plans. Fifty-one percent hope to increase their budgets by at least 5 percent in the next year, the study reported.
Take control of data security
When creating plans, organizations should outline steps that must be taken to ensure data protection. An expert from a leading security company recently spoke at the SNW Europe conference in Frankfurt and agreed with the results of the Ernst & Young survey. To protect data in the cloud, the expert encouraged employing encryption. Decision-makers can control who has access to confidential documents by encrypting all files before sending them to the cloud, Computer Weekly reported.
Business owners should also invest in security software and firewalls to block any hacker attempts, and use password protections. Experts also encourage decision-makers to educate their employees about the possible risks associated with cloud servers, and properly train IT staffs on how to resolve cloud issues.
-McAfee Cloud Security