Now that 2019 is in full swing, let’s look at one of our software partners, CloudKnox’s 2019 Security Predictions:
1. Securing Hybrid Cloud Infrastructure
2. Mitigating Tougher Insider Threats
3. New Security Perimeters
Which of these will be carried into 2020? Let us help you plan your security needs for next year.
CloudKnox Security 2019 Predictions
It should come as no surprise that security was a major concern throughout 2018. In the past few months alone, an internet service provider exposed sensitive data with a misconfigured Amazon S3 bucket, Nordstrom’s cybersecurity breach revealed employee’s personal information, and ElasticSearch’s server experienced a severe vulnerability. These and other major breaches continue to be top of mind as we head into the New Year, making cloud security more important than ever. With 2019 now in full swing, here are the top cloud security predictions to help you plan ahead …
1. Hybrid Cloud Will Emerge
And Take Center Stage
More enterprises than ever before will embrace hybrid cloud in 2019. The challenges of managing and securing hybrid cloud infrastructure will highlight the lack of visibility into and complexity of these critical environments. For example, each AWS account operates essentially as its own mini data center and most IT organizations will require multiple AWS accounts to support their respective businesses. Enterprises will have no choice but to refocus their attention on better understanding and harnessing their complex and uncontrolled cloud environments.
2. The Rise Of Non-Human
Identities Will Make Insider
Threats Even Tougher To Mitigate
Today, there’s an average of six nonhuman identities (e.g. service accounts, bots, servers, API Keys, applications etc.) for every one human identity, and this ratio will continue to increase exponentially. Organizations are already struggling to understand basic information like “how many (and which) identities can touch my infrastructure,” “what privileges do those identities have,” “what actions have they taken” and “what privileges do those identities really need to perform their jobs.” The rise in non-human identities will make these questions—and most importantly, the risk these identities introduce—more crucial and exceedingly difficult to identify and manage.
3. Identities Will Become The
New Security Perimeter
In 2019, the big cloud providers will start to realize that most enterprises are not going to migrate 100 percent of their
applications to public cloud and will focus on delivering solutions that provide a seamless hybrid-cloud experience. This will further blur the definition of the security perimeter, effectively making “identities” the new perimeter. Couple this paradigm shift with the unprecedented levels of automation that give identities vast power and enterprises will begin to rethink their approach to managing identity privileges across clouds. Enterprises will move away from depending on static role-based access controls (RBAC) to manage identity privileges and will start to turn to more dynamic authorization models (like activitybased controls) to achieve the principle of least privilege.