SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers
Story image
Only 20% of organisations use cloud DLP – Bitglass
Wed, 24th Jul 2019
FYI, this story is more than a year old

CASB company Bitglass has just released Guardians of the Cloud, its 2019 Cloud Security Report.

As organisations migrate more of their data and operations to the cloud, they must maintain a robust cybersecurity posture.

To uncover how well they are accomplishing this, Bitglass partnered with a leading cybersecurity community and surveyed IT professionals about cloud security in their organisations.

Each year, Bitglass conducts research on the state of enterprise cloud security in order to identify key trends and common vulnerabilities.

This year's report found that 75% of organisations leverage multiple cloud solutions, but only 20% have visibility over cross-app anomalous behaviour.

With more and more organisations storing sensitive information in the cloud – information like customer data (45%), employee data (42%) and intellectual property (24%) – adopting proper cloud security measures is critical.

Key findings:

  • Despite a change in their order, the top priorities from 2018 remained top priorities in 2019; this year, the top three were defending against malware, reaching regulatory compliance and securing major apps in use.
     
  • The use of CASBs for malware protection has increased from 20% in 2018 to 31% in 2019.
     
  • Access control (52%) and anti-malware (46%) are the most-used cloud security capabilities. However, these and others – like single sign-on (26%) and data loss prevention (20%) – are still not deployed often enough.
     
  • Malware has emerged as the most concerning data leakage vector, with 27% of respondents citing it as the number one concern for their organisation. Conversely, concern about leakage through unsanctioned cloud apps fell from 12% in 2018 to 5% in 2019, showing that organisations are becoming aware that there are threats greater than shadow IT.
     
  • Cost is the leading concern for organisations evaluating cloud security providers. Other critical concerns include ease of deployment (46%), whether the solution is cloud-native (45%), the ease with which cross-cloud security policies can be enforced (36%) and the solution's ability to integrate with various cloud platforms (36%).

“Data is now being stored in more cloud apps and accessed by more devices than ever before,” says Bitglass chief marketing officer Rich Campagna.

“This report found that 93% of respondents are at least moderately concerned about their ability to use the cloud securely and that the adoption rates of basic cloud security tools and practices are still far too low.

“Many organisations need to rethink their approach to protecting data, as traditional tools for safeguarding data on-premises are not capable of protecting data in the cloud.