PerspecSys Survey Reveals Cloud-based Security Concerns for 2014

March 10, 2014 / G C Network / Comments Off

Twitter Feed

Lynn DeCourcey Showcased in ExecutiveBiz

By G C Network | August 9, 2012

Kudos to my colleague Lynn DeCourcey for her recent interview on ExecutiveBiz.com! Lynn is NJVC vice president and general manager, cyber security. She oversees all aspects of the company’s cyber…

BISNOW Data Center Event Highlight’s Cloud

By G C Network | July 28, 2012

A big thank you to BISNOW and my fellow panel members for an outstanding discussion and very informative event, last week’s Data Center Investment Conference and Expo. The federal marketplace…

GSA Seeks Cloud Brokerage Information

By G C Network | July 18, 2012

GSA is using the RFI process to collect information about alternative models and/or solutions for future cloud acquisition vehicles and processes that further these goals. One emerging concept in cloud…

DoD Cloud Computing Strategy

By G C Network | July 15, 2012

The DoD recently released the department’s formal cloud computing strategy. DoD Cloud Computing Strategy View more documents from Kevin Jackson. In the forward, DoD CIO Teresa Takai said that: “The…

FedRAMP PMO Releases First Set of 3PAOs

By G C Network | May 14, 2012

Late today the FedRAMP Program Management Office released the first list of certified Third Party Assessment Organizations (3PAOs). These companies are accredited to perform initial and periodic assessment of cloud…

FedRAMP Releases Updated Security Assessment Plan Templates

By G C Network | May 8, 2012

Last week the GSA FedRAMP Program Office released the latest version of the cloud computing Security Assessment Plan (SAR) template. This document is the most recent step toward the Federal…

NJVC® and Gravitant® Announce New Strategic Alliance: Partnership to Benefit Federal Agencies with Powerful Provision and Management of Cloud Services that Unify Multiple Providers

By G C Network | April 4, 2012

Vienna, Va., April 4, 2012 — NJVC®, one of the largest information technology solutions providers supporting the U.S. Department of Defense, and Gravitant®, a provider of cloud brokerage and management…

NJVC® VP and GM, Cloud Services, Kevin L. Jackson to Speak on Cloud Security at 2012 Emerging Threats and Cyber Defense Symposium

By G C Network | March 18, 2012

Vienna, Va., March 15, 2012 — NJVC®, one of the largest information technology solutions (IT) providers supporting the U.S. Department of Defense, is pleased to announce that Kevin L. Jackson,…

NJVC’s Kevin L. Jackson Co-Authors INSA White Paper on Cloud Computing for the Intelligence Community

By G C Network | March 13, 2012

Findings Reflect Insight from More than 50 Cloud Thought Leaders VIENNA, Va.–(BUSINESS WIRE)–NJVC®, one of the largest information technology solutions (IT) providers supporting the U.S. Department of Defense, announces…

INSA Study on Cloud Computing in the Intelligence Community: Rollout 13 March 2012 | SYS-CON MEDIA

By G C Network | March 10, 2012

(Originally posted by Bob Gourley at CTOvision) Over the last year I’ve had the pleasure of serving with a team of volunteers from the Intelligence and National Security Alliance…

« Previous
1
…
30
31
32
33
34
…
73
Next »

Today PerspecSys announced the results of a survey conducted at the 2014 RSA Conference concerning the attitudes and policies of organizations towards cloud-based security. After polling 130 security professionals on the show floor of the RSA Conference, PerspecSys found that “an overwhelming 74 percent believe security for cloud-based data in 2014 will be a bigger concern than securing data on-premise. In fact, 66 percent of security pros still view the cloud as more difficult to secure than on-premise options.”

The survey found the following opinions concerning cloud security:

66% felt that cloud-based data is much more difficult to secure than on the premises
18% felt that securing data on the cloud is no different than securing data on the premises
16% felt that cloud-based data is less difficult to secure than on the premises

When asked if their organization has security protocols in place for cloud applications:

69% answered yes
31% answered no

The survey asked if their organizations allow employees to access corporate cloud environments from their personal mobile devices:

54% said yes, we have a policy to follow
28% said no, but employees do it anyway
17% said no, we are not allowed or unable to access corporate cloud environments

When asked does your organization use encryption or tokenization technologies to secure sensitive information in the cloud:

36% use encryption
34% don’t use encryption or tokenization
24% use encryption and tokenization
6% use tokenization

The survey also questioned if revelations regarding the government’s access to cloud data change their willingness to employ cloud services:

· 44% said that it had no effect

· 28% said they are less likely to use the cloud

· 25% said they are more likely to use the cloud

· 4% said regardless, they will never use the cloud

Companies need to be more proactive with cloud security

Although consumers are definitely shifting towards cloud applications, the survey results revealed that many organizations still need to take the proper steps to secure their cloud-based data. PerspecSys has concluded that:

“Almost 31 percent of respondents do not allow employees to access cloud applications such as Salesforce and DropBox from their mobile devices, but indicate employees do it anyway.”
“34 percent of organizations do not encrypt or use tokenization in the cloud.”
“31 percent of organizations do not have any significant security protocols in place for employees using cloud applications.”

David Canellos, the CEO of PerspecSys reports that “through the poll data, as well as the results of hundreds of conversations we had at our exhibition booth, we were surprised to see how few companies are putting protocols in place for employees using cloud apps, as they are nearly ubiquitous as productivity enhancers and can hold important data that an organization has a vested interest in protecting. The data reinforces that simply blocking access isn’t an option, it’s time to be proactive and put long trusted security tools such as encryption and tokenization in place to make sure that no matter where your data is, it is protected.”

Stephen Kleynhans, research vice president of Gartner’s, stated in “How the Personal Cloud Impacts IT Organizations” published on February 6, 2014 that “enterprises must establish policies to manage the use of consumer-grade personal cloud tools, ensuring that appropriate information security and compliance controls aren’t being overlooked. IT organizations must also actively survey the user base to understand the motivation behind the tools’ use and ensure that advantageous functionality hasn’t been missed as part of official IT-supported enterprise user environments. IT organizations need to look for places where consumers are using personal cloud services and related apps, and understand the motivations, realizing there may be significant business value that has been missed by IT.”

PerspecSys found that although NSA was a major discussion subject at the 2014 RSA Conference, almost half of those surveyed did not feel the recent headlines and media attention regarding government had any effect on their use of the cloud.

About PerspecSys

PerspecSys Inc. is a leading provider of cloud data control solutions that enable mission critical cloud applications to be adopted throughout the enterprise. PerspecSys gives organizations the ability to understand how employees are using cloud applications and take the necessary steps to protect sensitive information before it leaves the network. By removing the technical, legal and financial risks of placing sensitive data in the cloud, PerspecSys makes the public cloud private. Based in Toronto, PerspecSys Inc. is a privately held company backed by investors, including Intel Capital, Paladin Capital and Ascent Venture Partners. For more information please visit www.perspecsys.com and follow them on Twitter @PerspecSys.