Cisco: Securing the public cloud, without undercutting it
Public cloud infrastructure requires a new approach to security. We’ve all heard that line, but what does it actually mean? There is little stopping you from, say, deploying agents in the cloud to monitor traffic and detect threats and bringing other on-premises techniques to bear. But as anyone who’s ever attempted this before will tell you, the resulting impacts from, for example, using legacy staffing paradigms, can undercut the business incentives that led to cloud adoption in the first place.
Most organizations adopt the public cloud because it allows them to be responsive to the business, boost the availability of their services, and – most of all – lower their operational costs by providing exactly the computational resources they need when they need them. In the cloud, organizations can scale their operation up quickly, without the need for additional manpower to manage and provision equipment.
These benefits allow organizations to move quickly as their business needs change, but the benefits can be reduced or eliminated because of the wrong security strategy based on tools that don’t fit the new approach or that require manual processes. With that approach, every time an organization changes their cloud environment (which is designed to do so frequently), the security process imposes overhead to adjust to the changes including paying for services potentially no longer needed, contract adjustments and manual deployments to new assets, and manual change control steps. This approach undermines the business value of moving workloads to the cloud in the first place.
Read the entire article here, Securing the public cloud, without undercutting it
Via the fine folks at Cisco Systems.