Cloud security teams are in turmoil as attack surfaces expand at an alarming rate
This ITPro article examines how expanding cloud attack surfaces are creating operational strain for security teams. It highlights the need for stronger governance and visibility. Reach out to Derive Technologies to explore approaches to managing cloud security at scale.
What are the main challenges facing cloud security teams today?
Cloud security teams are facing several challenges, including lenient identity and access management (IAM) practices, which 53% of security executives identified as a top concern. Insufficient access controls are becoming a significant vector for credential theft and data exfiltration. Additionally, the issue of tool sprawl is prevalent, with teams managing an average of 17 different cloud tools, leading to fragmented data and context gaps.
How are attackers exploiting cloud environments?
Attackers are increasingly targeting foundational layers of cloud environments, specifically focusing on API infrastructure, identity, and lateral network movement. Notably, API attacks have risen by 41%, making them a primary entry point for sophisticated threats. The speed of these attacks has also increased, with breaches that once took an average of 44 days now occurring in as little as 25 minutes.
What is the role of SOC teams in cloud security?
SOC teams are struggling to keep up with the surge in cloud-related attacks due to disjointed workflows and isolated data sources. Nearly 30% of respondents reported taking more than a full day to resolve incidents. To improve effectiveness, 89% of organizations believe that cloud and application security must be fully integrated with the SOC, highlighting the need for a more cohesive approach to security management.
Cloud security teams are in turmoil as attack surfaces expand at an alarming rate
published by Derive Technologies
Derive Technologies, was founded in 2000 through the combination of two long-standing technology firms dating back as far as 1986; and incorporated as “Derive Technologies” in the beginning of 2001. Derive's team -- all of them already long-time collaborators at the time of the company's official founding -- continue to design and deliver progressive business-technology solutions that meet the challenges of New York Metro Area, national, and global enterprises, with a focus on on-going cost reduction. Starting as a local system integrator, Derive grew to become a value-added enterprise reseller (VAR), and, now, a recognized national and international IT business consultancy.
Sign in with LinkedIn