IT Management Challenges around Cloud Adoption
Today companies are speeding up the cloud adoption to quickly adapt the workforce to work from anywhere. Additionally, the data today is a key element for the company transformation and innovation. In that sense, Public Cloud is democratizing Artificial Intelligence and Big Data scenarios enabling companies to expand their business through a better understanding of the information generated from the raw data.
There are 4 main type of service models that companies can organize to match on their needs and transformation:
IaaS (Infrastructure as a Service), PaaS (Platform as a Service), SaaS (Software as a Service), FaaS (Function as a Service).
From the architecture side, it can be: Private Cloud (on-prem), Public Cloud or Hybrid Cloud.
Looking at the service models and architecture organization;
Agility, performance, security, training and regulations are some examples from points that must be looked through this journey.
Nowadays, to allow companies to achieve more, new areas are being created to better organize this important and strategical scenario. One example is the DevOps, which is a culture where Development and Operations areas work together in order to allow more agility for the companies.
Per Gartner’s statement “Through 2025, 99% of cloud security failures will be the customer’s fault.”
In this scenario, DevSecOps, where Security is part of the journey to the Cloud, can help companies to create a risk management strategy and guidance to less expose the companies to security breaches.
Cloud governance is another important piece in order to use the best of the Public Cloud benefits.
There are two organizations that can help with this part:
- Cloud Security Alliance – Cloud Security Alliance Cloud Controls Matrix
- Center for Internet Security – CIS Controls Cloud Companion Guide
Per Gartner statement:
“Exaggerated fears can result in lost opportunity and inappropriate spending. Organizations that make explicit executive decisions on their cloud strategy are providing far more guidance to the business and IT.
Increased guidance allows for:
- Better requirement analysis
- More sophisticated architectural planning
- More flexible risk acceptance processes
Public Cloud can help companies to enable their Digital transformation improving business and making innovation a reality. For this reason, security must be part of the journey since the beginning in order to allow a safe movement from the company.
Source:
https://www.gartner.com/smarterwithgartner/is-the-cloud-secure
https://cloudsecurityalliance.org/research/working-groups/cloud-controls-matrix
By Vanessa Padua
Microsoft Cybersecurity Director
São Paulo, Brazil
