Security News > 2021 > January > Streamlining cloud compliance through automation
As companies migrate to the cloud to take advantage of its scalability and flexibility, many don't fully realize how this move will affect their compliance with cybersecurity and privacy requirements mandated by laws and standards such as SOX, CCPA, SOC 2, PCI DSS or ISO 27001.
While the cloud offers significant freedom, it also creates new pain points around achieving compliance with these requirements, especially when first moving compliant workloads from on-premises data centers to the cloud.
There are three main challenges in managing and maintaining cloud compliance.
The first is inherent in compliance with any cybersecurity and privacy requirement, and the cloud doesn't make it go away - and that's the time it takes to audit.
Third, software development and change management in the cloud moves at light speed compared to more traditional monolithic application updates, and it can be difficult for companies to keep up with the security and privacy implications of that ever-changing cloud environment.
The pressure of limited resources, an unfamiliar environment, and an inability to keep up with rapid software development lifecycles, puts CISOs in a bind when it comes to cloud compliance.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/BqzvBaQoBFM/