Technical Cloud Security: Application security in the cloud
This is the third in a series of videos and blogs looking at some technical aspects of hybrid cloud security. Today we will talk about the role of application security in the cloud. Other videos in the series can be found by searching for the tag cloudsectechvideos.
Whilst the cloud platform and overlying compute instances can be configured in a very secure manner, often the weaknesses that are sought out and exploited by hackers are at the application level. In fact, recent research by HPE shows that up to 84% of recent breaches were aimed at application vulnerabilities. Especially in a cloud environment, where the emphasis is on agile DevOps and frequent code updates, security is often overlooked, and without effectively integrating security into the software development lifecycle (SDLC), vulnerable applications can be released into production with little understanding of the consequences.
Read the entire article here, Technical Cloud Security: Application security in the cloud
via the fine folks at HP Enterprise.