Security News > 2021 > November > Security leaders need more data and context to conduct cloud investigations
Based on a survey of 150 security professionals, the research examined the challenges and current maturity level of digital forensics and incident response of cyber-attacks on cloud environments.
It found that organizations are approximately 4x more likely to say both their cloud DFIR capabilities are less mature and cloud investigations are harder to conduct relative to traditional environments.
74% of security professionals say their organizations need additional data and context to conduct forensics investigations in cloud environments.
"The rapid move to the cloud is clearly outpacing security teams' ability to adapt their capabilities to respond to attacks within cloud-native environments," said Doug Cahill, VP and senior analyst at ESG. "In particular, this research reveals that digital forensics capabilities in cloud environments are more nascent, and investigations are more difficult compared to traditional environments. Because of this challenge, 85% of organizations we surveyed plan to increase spending on cloud-native digital forensics solutions over the next 12 months."
The research also examined the top priorities for security teams to better enable digital forensics investigations in their organizations' cloud environments.
Sixty-five percent of respondents cited the need to develop cloud skills within security operations teams, while 60% stated the need to develop a better understanding of the threats targeting cloud environments.
News URL
https://www.helpnetsecurity.com/2021/11/18/investigations-cloud-environments/
Related news
- Whitepaper: Reach higher in your career with cloud security (source)
- Transforming cloud security with real-time visibility (source)
- Top 5 Cloud Security Automations for SecOps Teams (source)
- Microsoft lost some customers’ cloud security logs (source)
- Researchers Discover Severe Security Flaws in Major E2EE Cloud Storage Providers (source)
- Apple Opens PCC Source Code for Researchers to Identify Bugs in Cloud AI Security (source)
- How AI Is Changing the Cloud Security and Risk Equation (source)
- Strategies for CISOs navigating hybrid and multi-cloud security (source)
- Enhancing visibility for better security in multi-cloud and hybrid environments (source)