Questions about the underlying security of the public cloud have largely subsided as adoption continues at a torrid pace. Still, IT shops struggle with the work to be done on top of the hyperscale platforms to fortify workloads.
Steps to improve transparency and familiarity with the public cloud have helped to allay fears about production workloads on the likes of Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform.
In addition, the shared-responsibility model for security puts the onus on both the vendor and the customer. Now that the industry has moved beyond the early hype and hysteria around public cloud, IT pros have become more pragmatic and objective in how they address their security posture in these environments.
Gene Stevens, ProtectWise co-founder and CTO said “The cloud service providers tend to execute a security model more broadly and more securely than … a traditional enterprise.”
Cloud providers have also added a slew of security tools and features that organizations can use to aid in data protection, including data encryption at rest and in transit, web app firewalls and key management services.
[Source]
