5 Cloud Security Mistakes to Avoid
Are there any people left, excluding a few flat-earthers on AM radio, who still doubt that moving services to the cloud generally improves security? Cloud environments are secure by default, they have extremely limited attack surfaces, and they are monitored by highly specialized security teams. Most organizations don’t have the resources to manage their own security half so well as the leading cloud providers. Yet moving to the cloud isn’t guaranteed to improve security. Here are 5 cloud security mistakes we see all too often:
- Keeping Your Cloud in Hybrid Mode Indefinitely
Most cloud migrations start out as a hybrid network where the cloud environment has a direct connection to the corporate network to make the initial transition easier. Fine. It’s often unavoidable. But don’t leave
it like that. Hybrid networks provide attackers a backdoor into your cloud environment. If you fail to isolate your vulnerable corporate endpoints from the cloud network, that backdoor essentially becomes a ramshackle screen door. Cloud security shouldn’t hinge on whether Tim in HR recognizes a phishing attempt when he sees one. (He never does,
poor guy!). Bottom line: you have to aggressively push your IT team to cut the umbilical cord as quickly as possible postmigration. Rearchitect your cloud services/applications so they are segregated from the corporate network.
- Replicating your Firewall Rules to the Cloud
To learn more and to read the entire article at its source, please refer to the following page, 5 Cloud Security Mistakes to Avoid- Rick Blaisdell’s Cloud Blog