Bitglass report finds only 20pc of organisations use cloud data loss prevention

67 percent believe cloud apps are as secure or more secure than on-premises apps

 

Next-gen cloud access security broker (CASB) Bitglass has released Guardians of the Cloud, its 2019 cloud security report. This found that while 75 percent of organisations leverage multiple cloud solutions, only 20 percent have visibility over cross-app anomalous behaviour.

 

According to Bitglass, with more and more organisations storing sensitive information in the cloud – information like customer data (45 percent), employee data (42 percent) and intellectual property (24 percent) – adopting proper cloud security measures is critical.

 

Bitglass believes that as organisations migrate more of their data and operations to the cloud, they must maintain a robust cyber security posture. To uncover how well they are accomplishing this, Bitglass partnered with a leading cyber security community and surveyed IT professionals about cloud security in their organisations.

 

Each year, Bitglass conducts research on the state of enterprise cloud security in order to identify key trends and common vulnerabilities.

 

Key findings

 

  • Despite a change in their order, the top priorities from 2018 remained top priorities in 2019. This year, the top three were: defending against malware, reaching regulatory compliance and securing major apps in use.
  • The use of CASBs for malware protection has increased from 20 percent in 2018 to 31 percent in 2019.
  • Access control (52 percent) and anti-malware (46 percent) are the most-used cloud security capabilities. However, these and others – like single sign-on (26 percent) and data loss prevention (20 percent) – are still not deployed often enough.
  • Malware has emerged as the most concerning data leakage vector, with 27 percent of respondents citing it as the number one concern for their organisation. Conversely, concern about leakage through unsanctioned cloud apps fell from 12 percent in 2018 to 5 percent in 2019, showing that organisations are becoming aware that there are threats greater than shadow IT.
  • Cost is the leading concern for organisations evaluating cloud security providers. Other critical concerns include ease of deployment (46 percent), whether the solution is cloud native (45 percent), the ease with which cross-cloud security policies can be enforced (36 percent) and the solution’s ability to integrate with various cloud platforms (36 percent).

 

“Data is now being stored in more cloud apps and accessed by more devices than ever before,” said Rich Campagna, chief marketing officer of Bitglass. “This report found that 93 percent of respondents are at least moderately concerned about their ability to use the cloud securely, and that the adoption rates of basic cloud security tools and practices are still far too low. Many organizations need to rethink their approach to protecting data, as traditional tools for safeguarding data on premises are not capable of protecting data in the cloud.”