Brainboard.co, a pivotal entity in cloud infrastructure management, has unveiled a report illustrating a critical condition in the realm of cloud security. Security professionals, according to the report, spend 80% of their working hours addressing preventable security flaws within cloud configurations.
The study reports that cloud security setups face nearly 500 alerts per week on average. Considering that the average financial toll of a cloud data breach is upwards of $4 million, the industry is plunged into a crisis that precludes professionals from engaging in proactive security initiatives that could fundamentally enhance their organisation’s protective measures.
Human Error
The report underscores human error as the chief culprit in 55% of cloud security breaches. It further reveals that a significant portion of cloud and DevOps engineers, over 60%, are in the early stages of their careers, which might lead to unintended security oversights.
Chafik Belhaoues, co-founder & CEO of Brainboard, remarked: “This statistic makes it abundantly clear that relying solely on human vigilance in a complex cloud environment can lead to severe consequences.
“The fact is, organizations simply cannot afford to wait to be hacked before taking action, and taking a reactive approach is extremely expensive and unsustainable, especially with modern and sophisticated attack systems.
“The only way to remedy that is to adopt a proactive approach to security in a way that helps engineers build secure-by-design systems.”
Proactive Security in the Cloud
Chafik suggests several initiatives to shift towards more proactive security measures.
He added: “The first big step to implementing proactive security for cloud architectures is to have an internal approved and secure library of building blocks that engineers can build with.
“Secondly, having a short security feedback loop that is close to users, such as ‘security shift left’, helps them build secure-by-design patterns.
“Finally, you can limit the blast radius by building isolated small cloud infrastructures. This reduces the impact to only the scoped environments or stacks.”
For more details on enhancing your cloud infrastructure’s security, visit www.brainboard.co.
