Cloud App Development

Uneven Adoption of Emerging Tech Found in a New Cloud Security Alliance Survey

Cloud Security Alliance (CSA), the world's largest organization dedicated to creating standards, certifications, and best practices that ensure a secure cloud computing environment, revealed the results of its most recent poll, Cloud Security and Technology Maturity, today. The poll, which was commissioned by CyberRes, a microfocus line of business and one of the world's top corporate software vendors, provides insight into enterprises' current and future intentions for cloud strategy, security, cloud services, and cloud-related technology.

"Cloud is a continuously evolving space with new services, strategies, and technologies springing up seemingly overnight. It's imperative, therefore, that organizations regularly change and adapt their approach to cloud and cloud security. While many of the survey's findings were in line with what we would expect, it was surprising that some technologies that have garnered the most hype are not, in fact, what organizations are planning to implement,"


Hillary Baron, lead author, and research analyst, Cloud Security Alliance

Despite introducing the General Data Protection Regulation (GDPR) in 2018, privacy-by-design is still in its early stage of development. With two-thirds of organizations (65%) either developing or planning to develop strategies, only 8% of respondents indicated that they have a fully implemented privacy-by-design strategy. Similarly, the survey also found that while blockchain and distributed ledger technology have been hyped for years, implementation rates have stagnated, owing to high failure rates caused by a lack of technical understanding combined with a high demand for resources.

Quantum-safe security and 5G aren't widely used yet, and additional research is required to determine the root causes and forecast a more reliable adoption timeframe.

"The growing popularity of artificial intelligence, machine learning, and Zero Trust, for instance, was definitely in keeping with what we have been hearing anecdotally across the industry, but there were also some surprises in what companies aren't using. While multi-cloud adoption is strongly favored, many organizations are facing challenges in taking deployments to a next level," said Satya Divadari, Head of Enterprise Security Architecture, CyberRes, a Micro Focus line of business.

Spotlight

Other News
Cloud Storage

DigitalOcean Introduces Cloud-Hosted Scalable Storage for Managed Databases

Business Wire | October 06, 2023

DigitalOcean Holdings, Inc. (NYSE:DOCN), the cloud for startups and SMBs, today announced the launch of Scalable Storage for DigitalOcean PostgreSQL and MySQL Managed Databases, which enables small and medium-sized businesses to only pay for the data resources they need, preventing cloud underutilization and optimizing customer spend. With this new offering, DigitalOcean customers can increase the disk storage of their Managed Databases without needing to change compute and memory to meet higher data utilization demands. As businesses continue to grow and face ever-increasing customer demands, they need a database solution that can seamlessly scale alongside them, said Megan Wood, Chief Strategy & Product Officer at DigitalOcean. DigitalOcean’s portfolio is tailored to meet the needs of startups and tech entrepreneurs, enabling them with flexible and cost-effective solutions like Scalable Storage. With this new offering, businesses can easily accommodate dynamic database storage requirements and expand their data footprint with confidence, making it easier to grow in the cloud. Almost all businesses require a database that can scale to meet their needs, whether it’s an AI company storing voice recordings to train their large language model or an e-commerce website keeping inventory data up to date. For startups and SMBs with limited resources, the ability to have flexible and affordable storage options is also critical. Scalable Storage gives users the flexibility to add storage to MySQL and PostgreSQL Managed Databases at cost-effective prices with minimal friction and downtime. With a variety of shared and dedicated configuration plans, DigitalOcean customers can benefit from more customizable options that better fit their businesses. Add disk storage without adding compute and memory: Through this offering, users can add disk storage in 10 GB increments each priced at $2/month to meet constantly shifting demand without needing to increase compute and memory. Customers at different user levels can make changes to their disk storage capacity through various ways of interactions, including the Cloud Console or via API, allowing for a simpler and more intuitive experience. Greater disk storage capacity: All Managed Database plans come with a range of disk storage options beginning with a minimum amount that customers can increase from two to five times the starting amount. With storage capacity now up to 15 TB, users can future-proof their databases by helping to ensure they can handle the largest of database production workloads. Monitoring to optimize costs: Customers can scale compute, memory, and storage when it matters most by monitoring utilization data and setting alerts. By only paying for the database compute and storage resources needed, businesses can continue to optimize costs while maintaining peak performance. Alongside DigitalOcean Scalable Storage, DigitalOcean has been making investments in its product and infrastructure offerings to provide peace of mind, increased productivity, and more affordable solutions for SMBs and startups. About DigitalOcean DigitalOcean simplifies cloud computing so builders and businesses can spend more time creating software that changes the world. With its mission-critical infrastructure and fully managed offerings, DigitalOcean helps developers at startups and small and medium-sized businesses (SMBs) rapidly build, deploy and scale, whether creating a digital presence or building digital products. DigitalOcean combines the power of simplicity, security, community and customer support so customers can spend less time managing their infrastructure and more time building innovative applications that drive business growth. For more information, visit digitalocean.com.

Read More

Cloud App Management

Cohesity Launches Cohesity SmartFiles Integration on the Snowflake Data Cloud

Business Wire | November 01, 2023

Cohesity, a leader in AI-powered data security and management, today announced the launch of Cohesity SmartFiles on the Snowflake Data Cloud. This new integration enables businesses to derive analytical insights from their on-premises and cloud data while maintaining data sovereignty and meeting compliance requirements. Snowflake recognizes the critical importance of providing customers with advanced data security and management while mining their data for strategic insights, said Kit Beall, Chief Revenue Officer, Cohesity. As a leader in AI-powered enterprise data security and management, we seek partners equally dedicated to the secure storage and management of customer data. That is why we are delighted to partner with Snowflake to continue delivering innovative and secure solutions that our customers can confidently rely on. By leveraging the Snowflake Data Cloud, Cohesity is joining Snowflake in mobilizing the world’s data to help organizations reap the benefits of their analytics capabilities without having to move their data to the cloud for analysis. With Cohesity SmartFiles, joint customers can store their data locally in SmartFiles and leverage Snowflake’s analytics capabilities with the flexibility to keep data either on-premises or in the cloud. This integration provides customers with broader access and choice while allowing them to adhere to strict internal policies. Cohesity SmartFiles augments customers’ cloud-native Snowflake Data Cloud to include on-premises repositories and extends secure access to sensitive local data records. Cohesity SmartFiles also provides a secure platform for consolidating application data that is designed to improve storage efficiency and reduce overall cost of ownership for local Snowflake repositories. “Cohesity’s commitment to helping Snowflake mobilize the world’s data can be seen through the launch of the SmartFiles integration,” said Tarik Dwiek, Head of Technology Alliances, Snowflake. “We look forward to partnering with Cohesity to allow access to SmartFiles in the cloud or on-premises through Snowflake’s single, integrated platform.” This collaboration with Snowflake and Cohesity enables joint customers to gain more value from their data while optimizing cost, scale, and efficiency for their Snowflake data. About Cohesity Cohesity is a leader in AI-powered data security and management. Aided by an extensive ecosystem of partners, Cohesity makes it easier to protect, manage, and get value from data – across the data center, edge, and cloud. Cohesity helps organizations defend against cybersecurity threats with comprehensive data security and management capabilities, including immutable backup snapshots, AI-based threat detection, monitoring for malicious behavior, and rapid recovery at scale. Cohesity solutions can be delivered as a service, self-managed, or provided by a Cohesity-powered partner. Cohesity is headquartered in San Jose, CA, and is trusted by the world’s largest enterprises, including six of the Fortune 10 and 42 of the Fortune 100.

Read More

Cloud Infrastructure Management

Britain's TSB Bank Selects Lacework for Enhanced Cloud Protection

Lacework | September 25, 2023

Lacework, the data-driven cloud security firm, has been selected by TSB Bank, a prominent British banking institution, to safeguard its cloud infrastructure. TSB Bank's decision to choose Lacework as its cloud security provider demonstrates its commitment to protecting sensitive data and ensuring the highest level of security for its customers. With Lacework's expertise in data-driven security solutions, TSB Bank can confidently rely on their cloud infrastructure being safeguarded against potential threats and vulnerabilities. TSB's Chief Information Security Officer, Paul Branley, expressed his excitement about the development, stating that the Lacework Polygraph data platform would transform the way their security teams operate. He mentioned that it would enable their developers to concentrate on value-added tasks while also substantially reducing security alerts. TSB, a longstanding player in the banking sector with over two centuries of heritage, is serving over five million customers through various channels, including digital, phone, and branches across the UK. With a growing digital business, TSB needed a unified cloud security platform to support its multi-cloud landscape. Lacework will facilitate secure and innovative cloud scaling, eliminating vulnerabilities across various cloud configurations and applications. Andreas Schneider, Field-CISO at Lacework, reportedly mentioned, Partnering with Lacework, TSB will be able to reduce complexity in their tool landscape, and our anomaly detection will allow them to embed security at any speed and scale." [Source – Cision PR Newswire] Lacework's platform will enable TSB to automate audit and compliance processes while seamlessly integrating into DevOps and CI/CD pipelines, ensuring security acts as an enabler of innovation velocity. The adoption of Lacework’s technology by TSB Bank may entail integration challenges, risks related to automation, and uncertainties about real-world effectiveness that could affect TSB's security strategy. TSB Bank's selection of Lacework promises improved cloud security, enhanced developer focus, and support for its multi-cloud landscape, with automation and integration into DevOps pipelines to boost innovation. About Lacework Lacework, a leading cloud security company, offers innovative and scalable solutions for robust cloud security. Their flagship product, the Polygraph Data Platform, automates security processes, providing comprehensive risk insights for security and development teams. Lacework's unique ability to analyze data across AWS, Azure, GCP, and Kubernetes environments is a significant advantage for businesses worldwide. Founded in 2015 and headquartered in Mountain View, California, Lacework excels in breach detection, audit and compliance, and container security.

Read More

Cloud Security

Aviatrix’s Distributed Firewall: A Breakthrough in Cloud Security

Aviatrix | October 13, 2023

Aviatrix, a leading provider of secure cloud networking solutions, unveiled the results of a comprehensive technical assessment conducted by TechTarget's Enterprise Strategy Group, highlighting the efficacy of its revolutionary distributed cloud firewall in fortifying cloud-based cybersecurity. The report underscores the growing need for a simplified and comprehensive security architecture to safeguard applications on public cloud infrastructure as organizations increasingly leverage multiple cloud providers. According to the evaluation, the Aviatrix Distributed Cloud Firewall significantly reduces the complexity of securing public cloud infrastructure, streamlining crucial aspects such as threat blocking, policy definition, enforcement, and microsegmentation. This is a significant development considering the challenges posed by traditional firewalls that struggle to adapt to the dynamic nature of cloud computing. Alex Arcilla, Senior Validation Analyst at Enterprise Strategy Group, reportedly remarked, Many organizations are still working with traditional data center network firewalls that have been virtualized to work in the public cloud, and they're now finding that they're saddled with the same – if not more – challenges than they faced when deploying firewalls on premises. [Source – Cision PR Newswire] Aviatrix's innovative Distributed Cloud Firewall, a key offering within its Secure Cloud Networking suite, revolutionizes network security in the cloud by enabling distributed inspection and enforcement. This approach enhances security, scalability, and agility while substantially reducing costs. Notably, the distributed architecture allows for a cost reduction of over 30% while delivering a 14-fold increase in aggregate security throughput compared to conventional, centralized firewall architectures commonly adapted for cloud environments. It was proven that the Aviatrix Distributed Cloud Firewall can create a zero-trust security posture in multicloud environments by protecting the current perimeter, locking down environments with policy configurations based on cloud resource attributes and tags, and filtering traffic from one service to another. These features ensure comprehensive security measures for east-west service-to-service traffic within cloud environments and internet egress traffic. Rod Stuhlmuller, the Vice President of Solutions Marketing at Aviatrix, emphasized that the introduction of Aviatrix's Distributed Cloud Firewall earlier that year had signaled the beginning of a new era for cloud network security. He further noted that customers were rapidly embracing this solution. Additionally, he highlighted that the technical analysis by Enterprise Strategy Group underscored the value that Aviatrix was providing to enterprises struggling with contemporary cloud security challenges and associated expenses. However, the Aviatrix Distributed Cloud Firewall, with its intricate functionalities and sophisticated network security configurations, may present a considerable obstacle for users less familiar with such intricate setups. Consequently, the successful deployment of this firewall may require the involvement of specialized experts to ensure its optimal performance. Moreover, the initial financial investment and the intricacies involved in the integration process of the Aviatrix Distributed Cloud Firewall may create barriers for smaller organizations, potentially limiting their access to the advantages it offers. Notwithstanding these challenges, the Aviatrix Distributed Cloud Firewall effectively addresses the continually changing security requirements of modern cloud environments. It presents a seamless and cost-effective solution for establishing comprehensive cybersecurity measures within a cloud-based infrastructure, thereby enhancing the overall security posture and minimizing potential risks. About Aviatrix Aviatrix, a Santa Clara-based software development firm, caters to a global clientele of over 500 companies, providing secure cloud networking solutions that foster innovation and cost control. Its pioneering Aviatrix Certified Engineer (ACE) Program facilitates digital transformation for businesses. Specializing in hybrid cloud networking, VPC peering, and cloud security, Aviatrix is recognized for its expertise in simplifying and streamlining networking architectures across multiple cloud service providers.

Read More