Security News > 2023 > March > Cloud security, hampered by proliferation of tools, has a “forest for trees” problem
Over 60% of organizations have been operating in a cloud environment for three or more years, but technical complexities and maintaining comprehensive security still hamper their cloud migration efforts, according to the 2023 State of Cloud-Native Security Report.
In the report, the ideal cloud security solution is scalable and able to handle immediate security needs and additional use cases as the company expands cloud applications and uses.
The survey found that enterprises are split between a single security vendor/tool approach and a multiple security vendor/tool approach for each of their security needs.
Three quarters of the leaders Palo Alto surveyed said they struggled to identify which security tools were necessary to achieve their objectives, which led to deploying numerous single point security solutions - of the 30-plus security tools on average that organizations are using, six to 10 are dedicated to cloud security.
Security teams should have a comprehensive understanding of how their company goes from development to production in the cloud to find the least disruptive insertion points for security tools.
Don't end up with dozens of tools siloed for specific security use cases in the cloud, leading to what Palo Alto Networks calls a "Sprawl" of tools that bog down cloud security teams and leave visibility gaps.
News URL
https://www.techrepublic.com/article/cloud-security-tools-trees-problem/
Related news
- Best CSPM Tools 2025: Top Cloud Security Solutions Compared (source)
- How AI Is Changing the Cloud Security and Risk Equation (source)
- Strategies for CISOs navigating hybrid and multi-cloud security (source)
- AWS unveils cloud security IR service for a mere $7K a month (source)
- Are Long-Lived Credentials the New Achilles’ Heel for Cloud Security? (source)
- CrowdStrike vs Wiz: Which Offers Better Cloud Security and Value? (source)
- CISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01 (source)
- IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools (source)
- Enhancing visibility for better security in multi-cloud and hybrid environments (source)
- Cybersecurity Blind Spots in IaC and PaC Tools Expose Cloud Platforms to New Attacks (source)