Ten years ago, I wrote a post titled: Cloud Computing and the Security Paradox. In this ancient post I argued that the claim of insufficient Security of the Public Clouds systems is based on a perception that what is not controlled by the Enterprise within its Data Center is less secured. However, Public Clouds Security was better than assumed based on our perception.
Sometimes it was better than the Security of Data and Systems located within the Enterprise's Data center.
The COVID-10 magnified the Security Risks and the Public Clouds are more Secured than many Private systems.
The enhanced Threats landscape
The COVID-19 Pandemic restrictions changed dramatically the way people collaborate and interact. The Security measures, Procedures, Policies and tools should be adapted to the new interaction style.
Adaptation is a continuos Process therefore the vulnerability is higher than before COVID-19.
Main reasons for the higher vulnerability are summarized in the following bullets:
1. Work from home
The Client Security and the Home Network Security is not as robust as the Enterprise Security.
Some Employees had worked from home sometimes, but the magnitude is different: Many employees are working only remotely from their company's offices.
2. Charecteristics of Remote Workers
Higher percent of the Pandemic Remote Workers lack technology expertise.
3. Extended usage of e-commerce
Due to COVID-19 regulations in many countries restrict activities of physical shops and due to fear of being infected by the Corona virus, more transactions are executed by online services.
More online commerce implies more Security Attacks.
Some of the novice e-commerce users lack skills and awareness of Security and are potential attacks and fraud victims.
4. Extended usage of Remote Services
Due to the regulations and attitude described in the previous section and due to service providers face to face interactions restrictions more services are consumed by the Web and Smartphone channels.
More transactions and more users imply more Security threats.
5. Meeting Solutions
Meeting solutions Security robustness is questionable.
Non-Technological Users, such as people using Meeting Solutions to conduct virtual meetings with their grand children may not use or may use improperly existing Security features of the Meeting Solutions.
New Online Services Providers' Limitations
The traditional Public Cloud vendors had plenty of time to plan their systems. The planning included Security and Business Continuity.
They implemented their solutions. They improved them gradually based on experience of many users.
Security is essential for their business growth. Data Breaching or other Security problems could harm their reputation and Customers may use competitors' services.
Therefore, the Security of Public Clouds is at least reasonable.
New Online Services Providers were forced to transform their model immediately due to COVID-19 restrictions.
They could not afford postponing the transformation until they plan and test their systems or services properly. They were not able to postpone launching their Services until they endorse bullet proof Security.
The result is less Secured Services and System outside the Public Cloud.
The Security Paradox is no longer a Paradox. It is a new Reality.
1 comment:
A thought-provoking analysis of the evolving security landscape post-COVID-19. The heightened vulnerability in the era of remote work, increased e-commerce usage, and reliance on online services is indeed a paradigm shift. The comparison between traditional Public Cloud vendors and new Online Services Providers highlights the importance of robust planning and gradual improvement in ensuring security.
It's intriguing to witness the transformation and immediate adaptation by newer service providers, albeit with potential security trade-offs due to the urgency imposed by the pandemic. In this context, it's worth considering how established platforms like MyHub Intranet's robust intranet software can provide a secure and reliable solution for organizations navigating these challenges. Exploring such solutions becomes essential in mitigating the security risks discussed in the post. For instance, platforms like MyHub Intranet emphasize security and business continuity, aligning with the principles that traditional Public Cloud vendors have prioritized over time. To learn more about effective intranet solutions, you might find valuable insights at MyHub Intranet.
Post a Comment