Lack of visibility into cloud access policies leaves enterprises flying blind

2023-08-24 03:00

Fragmented access policies are top security concern in multi-cloud environments, with more than 75% of enterprises reporting they do not know where applications are deployed and who has access to them, according to Strata Identity.

"More identity systems are being used to manage users, and organizations are losing visibility and control over their identities and access policies. So improvements in identity infrastructure intended to drive an improvement in an enterprise's cybersecurity posture have caused the opposite effect leading to complexity overload," said Michael Sampson, principal analyst for Osterman Research.

"Poor visibility of existing access policies means enterprises are flying blind - they do not know where apps are hosted, nor who has access to their data. In our opinion, the rapid adoption of multi-cloud is elevating this problem to critical status," Sampson continued.

Report focuses on how multiple cloud and identity platforms impact identity and access policy management, create security and operational problems, and why the talent gap in identity professionals prevents organizations from addressing these challenges.

Cloud identity systems 76% of organizations do not have complete visibility into the access policies and applications across multiple cloud platforms, including which access policies exist, where applications are deployed, and who does and doesn't have access.

56% of enterprises don't have a single version of the truth for identities and their associated attributes, increasing concerns over identity duplication and the likelihood of unauthorized access and credential breach.

News URL

https://www.helpnetsecurity.com/2023/08/24/visibility-cloud-access-policies/

#cloud