View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cloud
April 9, 2020updated 30 Jun 2022 4:23am

All That Cloud Data Is Causing Firms to Focus on the Wrong Security Issues

"Mismatch between threats respondents perceive, and those threats that in reality pose the most risk, implies that respondents have not fully considered data security in a cloud-first world."

By CBR Staff Writer

More than half of data is now stored in the cloud and its causing organisations to focus on security issues related to their cloud provider and not on their own data security best practices.

This is according to the 2020 Thales Data Threat Report in which 43 percent of IT experts stated that they are ‘aggressively disrupting’ the markets they operate in.

Yet the rapid change and implementation of digital technologies such as IoT, edge and the cloud is complicating how data security is undertaken. Data security threats for organisations is at a high as 49 percent of respondents had experienced a data breach, while 26 percent have been breached within the last year.

The location of stored data is driven by the use of a broad set of technologies with 38 percent of organisations stating that they house data in SaaS applications. However, the report found that more than 90 percent of its respondents are concerned about the data security of SaaS applications and their cloud service provider. While there have been security issues related to cloud providers in the past, many of these cases involved misconfigurations and poorly managed endpoints.

Thales believes that its report shows that while two-thirds of firms think they are operating in a secure manner: “Organizations are not implementing the processes and investing in the technologies required to appropriately protect their data. More than half have been breached or experienced failed security audits. And when it comes to securing data in the cloud, most companies incorrectly look to their cloud providers for their portion of the shared responsibility model.”

The report was compiled following a IDC web-based survey that queried 1,723 executives that have influence or responsibly for the security of IT systems and data within their organisations.

Failing Compliance Audits

It seems that IT systems within the financial services, healthcare, and retail sectors are struggling with new regulatory environments as just over half of financial service respondents said that they have not only experienced a data breach, but that many have failed compliance audits in 2019.

Content from our partners
Scan and deliver
GenAI cybersecurity: "A super-human analyst, with a brain the size of a planet."
Cloud, AI, and cyber security – highlights from DTX Manchester

Worryingly 52 percent of responders who work within government agencies stated that they have the same compliance issues.

However, during 2019 within the EU sketchy government compliance numbers are not that unusual. 2019 marked the first full-calendar year with GDPR in place and many agencies are still struggling to understand the new environment and bring themselves into compliant state.

Of course ignorance of the law is no excuse, but it should be noted that the Information Commissioner’s Office, the regulatory watchdog for GDPR compliance within the UK, was itself not in-line with GDPR when it came to the use of cookies on its website.

Last June the ICO was forced to admit that its cookies consent process was not right and that: “We are currently in the process of updating this to align our use of cookies to the GDPR standard of consent and we will be making amendments to this information during the week commencing 24 June.”

See Also: London Ambulance Service in Urgent Call for Replacement Dispatch Software

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.