With multicloud, beware the misconfiguration gap

Ensuring security within multiclouds is more complex than simply adopting more security tools.

03 June 2024

Lionel Dartnall, Check Point

Organisations are constantly adopting new tools and technologies, including multiple cloud platforms, to stay competitive, agile and secure. But according to Strata’s ‘State of Multicloud Identity Report’, over 75% of enterprises do not know where applications are deployed and who has access. This is a problem when you consider that cloud security breaches have surpassed on-premises breaches (as per the ‘Verizon Data Breach Investigations Report’) in 2023.

While the ability to dilute cybersecurity risks across multiple platforms sounds great, with the adoption of multicloud comes greater complexity in monitoring and managing infrastructure. The more clouds, the bigger the attack surface, and with multicloud, there’s always going to be a problem of multiples – multi-identity, multi-geography and the resulting fragmentation that is often the root cause of security risks. “If you have to ask why the cloud is so prone to breaches, the number one thing we’re seeing is misconfigurations,” says Lionel Dartnall, a security engineering manager at Check Point. “Because of the nature of the cloud, you can spin up workloads easily, and security is often an afterthought.”

ITWeb Premium

Get 3 months of unlimited access
No credit card. No obligation.

Already a subscriber Log in