SlideShare a Scribd company logo

CSA Research: Mitigating Cloud Threats

Download as PPTX, PDF
Bitglass, profile picture
Bitglass

The document discusses a webinar from August 30, 2016, focused on mitigating risks associated with cloud applications, highlighting top security threats such as external sharing and unauthorized devices. It notes that while cloud adoption is increasing, many organizations lack adequate visibility and technical controls to address shadow IT and security concerns. Furthermore, there is a divided opinion on government cooperation regarding data security, with a significant number of organizations facing challenges in protecting sensitive data in the cloud.

Technology
Related topics:
Cloud Security Insights
1 of 18
Downloaded 19 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
webinar august 30 2016 mitigating risk for cloud applications
STORYBOAR core questions ■ What are the top cloud security threats facing enterprises? ■ How should cloud app vendors approach government cooperation? ■ What capabilities are most valuable for protecting data? ■ Do IT leaders have adequate visibility into user activity? ■ How are organizations dealing with the shadow IT threat?
STORYBOAR ■ A few organizations now cloud-only ■ Most cloud-first or shifting to a cloud-first mentality ■ Rate of adoption continues to grow rapidly across all industries cloud adoption continues to rise most organizations have deployed at least one cloud app
poll: what are your top cloud security concerns
STORYBOAR biggest concern - external sharing followed by unauthorized devices, data sync ■ Nearly 60% see external sharing as a key concern ○ Cloud apps have made one click sharing easier ■ Data sync concerns suggest orgs need control over sync clients
STORYBOAR ■ Organizations need solutions that leverage cloud APIs for control over sharing ■ Real-time DLP limits risk at access and download ■ UEBA trending up sharing controls and DLP top cloud sec capabilities access controls are increasingly valuable
STORYBOAR ■ One in three say yes, they expect cloud providers to cooperate with government ■ Small handful support government mandated encryption algorithms most opposed to government cooperation over 30% say providers should turn over encrypted data
poll: what security capabilities are most critical in your org
STORYBOAR ■ Many are turning to third-party solutions ○ Separation of systems for data-at-rest provides additional level of security ■ 17% take no security measures. IT leaders use encryption to combat security concerns most are taking steps to limit risk of data leakage
STORYBOAR ■ Basic visibility provided by some cloud apps ■ Cross-app visibility is limited orgs without CASBs most enterprises lack adequate visibility cross-app visibility remains a challenge
STORYBOAR ■ Written policies ineffective in protecting data ■ Blocking apps encourages employees to work around IT ■ Useful technical controls, like proxies, used by 29% most orgs lack technical controls to combat shadow IT a growing problem needs an effective solution
STORYBOAR the enterprise is responsible for secure saas usage components usage/consumption data application services servers & storage network layer data application infrastructure owner enterprise
STORYBOAR security must evolve to protect data outside the firewall ungoverned access to corporate data in the cloud hidden Shadow IT threats sensitive cloud data on unmanaged devices
STORYBOAR findings recap ■ Public cloud adoption continues to rise, only 16% have no SaaS apps deployed. ■ Split on government cooperation. 55% are opposed. ■ Shadow IT a concern, but few organizations have technical controls in place. ■ Security incidents still rampant. 59% due to unwanted external sharing. ■ Cloud visibility is lacking. Less than 30% can monitor user logins and activity.
STORYBOAR about bitglass total data protection est. jan 2013 200+ customer s tier 1 VCs
STORYBOAR our solutions cloud mobile breach 16
resources: more info about cloud security ■ report: mitigating cloud threats ■ whitepaper: definitive guide to casbs ■ report: cloud adoption by industry
STORYBOAR bitglass.com @bitglass

More Related Content

PPTX
Example presentation
aturnock
 
PDF
Radical Innovation In Security (New Techniques Applied To Tomorrow’s Risk)
Fujitsu Middle East
 
PDF
Why Your Business Can’t Ignore the Need for a Password Manager Any Longer
Digital Transformation EXPO Event Series
 
PDF
The Economics of IT Risk and Reputation
IBM Security
 
PPTX
Top 2016 Mobile Security Threats and your Employees
Neil Kemp
 
PDF
What has changed in Corporate Cybersecurity?
Nixu Corporation
 
PPTX
CompTIA International Trends in Cybersecurity
CompTIA
 
PDF
Cybersecurity Skills in Industry 4.0
Eryk Budi Pratama
 
Example presentation
aturnock
 
Radical Innovation In Security (New Techniques Applied To Tomorrow’s Risk)
Fujitsu Middle East
 
Why Your Business Can’t Ignore the Need for a Password Manager Any Longer
Digital Transformation EXPO Event Series
 
The Economics of IT Risk and Reputation
IBM Security
 
Top 2016 Mobile Security Threats and your Employees
Neil Kemp
 
What has changed in Corporate Cybersecurity?
Nixu Corporation
 
CompTIA International Trends in Cybersecurity
CompTIA
 
Cybersecurity Skills in Industry 4.0
Eryk Budi Pratama
 

What's hot (20)

PPTX
Internet of Things Security: IBM HorizonWatch 2016 Trend Brief
Bill Chamberlin
 
PDF
Securing the C-Suite: Cybersecurity Perspectives from the Boardroom
IBM Security
 
PDF
NetSecOps: Everything Network Managers Must Know About Collaborating with Sec...
Enterprise Management Associates
 
PDF
CompTIA 10th Security Study
Assespro Nacional
 
PPTX
Data erasure's role in limiting cyber attacks
Blancco
 
PDF
The Borderless Enterprise: Adapting Network Management to Mobility, Cloud, & ...
Enterprise Management Associates
 
PPTX
Information Security for Business Leaders - Eric Vanderburg - JurInnov
Eric Vanderburg
 
PDF
Big data contains valuable information - Protect It!
Praveenkumar Hosangadi
 
PPT
ITS Datamatix Gitex Conference 2009 New ICT Security V2
Jorge Sebastiao
 
PPTX
Delete vs Erase: How Are Companies Wiping Active Files
Blancco
 
PPTX
Global Threats| Cybersecurity|
paul young cpa, cga
 
PDF
2015 Mobile Security Trends: Are You Ready?
IBM Security
 
PPTX
Nonprofit Cybersecurity Risk Assessment Basics
Community IT Innovators
 
PDF
Symantec Intelligence Report: May 2015
Symantec
 
PDF
Digital Generation: Security Infographic
Unisys Corporation
 
PPTX
APE Intrusion Prevention
MarkMitchell178
 
PDF
Top 3 security concerns for enterprises
Taranggg11
 
PDF
Iid infoshare exec_summary final
Andrew_Goss
 
PDF
Security Trends in the Retail Industry
IBM Security
 
PDF
The State of Data Security
Razor Technology
 
Internet of Things Security: IBM HorizonWatch 2016 Trend Brief
Bill Chamberlin
 
Securing the C-Suite: Cybersecurity Perspectives from the Boardroom
IBM Security
 
NetSecOps: Everything Network Managers Must Know About Collaborating with Sec...
Enterprise Management Associates
 
CompTIA 10th Security Study
Assespro Nacional
 
Data erasure's role in limiting cyber attacks
Blancco
 
The Borderless Enterprise: Adapting Network Management to Mobility, Cloud, & ...
Enterprise Management Associates
 
Information Security for Business Leaders - Eric Vanderburg - JurInnov
Eric Vanderburg
 
Big data contains valuable information - Protect It!
Praveenkumar Hosangadi
 
ITS Datamatix Gitex Conference 2009 New ICT Security V2
Jorge Sebastiao
 
Delete vs Erase: How Are Companies Wiping Active Files
Blancco
 
Global Threats| Cybersecurity|
paul young cpa, cga
 
2015 Mobile Security Trends: Are You Ready?
IBM Security
 
Nonprofit Cybersecurity Risk Assessment Basics
Community IT Innovators
 
Symantec Intelligence Report: May 2015
Symantec
 
Digital Generation: Security Infographic
Unisys Corporation
 
APE Intrusion Prevention
MarkMitchell178
 
Top 3 security concerns for enterprises
Taranggg11
 
Iid infoshare exec_summary final
Andrew_Goss
 
Security Trends in the Retail Industry
IBM Security
 
The State of Data Security
Razor Technology
 
Ad

Viewers also liked (7)

PPT
Cloud Security Overview
Heather Axworthy
 
PDF
Dimension data cloud_security_overview
RifaHaryadi
 
PPTX
How to Secure Your IaaS and PaaS Environments
Info-Tech Research Group
 
PDF
SAP Cloud security overview 2.0
Rasmi Swain
 
PPTX
Is6120 data security presentation
JamesDempsey1
 
PDF
The Security and Privacy Threats to Cloud Computing
Ankit Singh
 
PPTX
Cloud security ppt
Venkatesh Chary
 
Cloud Security Overview
Heather Axworthy
 
Dimension data cloud_security_overview
RifaHaryadi
 
How to Secure Your IaaS and PaaS Environments
Info-Tech Research Group
 
SAP Cloud security overview 2.0
Rasmi Swain
 
Is6120 data security presentation
JamesDempsey1
 
The Security and Privacy Threats to Cloud Computing
Ankit Singh
 
Cloud security ppt
Venkatesh Chary
 
Ad

Similar to CSA Research: Mitigating Cloud Threats (20)

PPTX
Top 5 Cloud Security Threats in Healthcare
Bitglass
 
PPTX
CASBs: 8 Critical Capabilities in partnership with ISMG Media Group
Bitglass
 
PPTX
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Himani Singh
 
PPTX
Data Breach: The Cloud Multiplier Effect
Netskope
 
DOCX
Schoology cloud assignment
Vellore Institute of Technology
 
PPTX
8 questions to ask when evaluating a Cloud Access Security Broker
Bitglass
 
PPTX
Webinar - Bitglass and CyberEdge - Hidden Security Threats
Bitglass
 
PPTX
Securing IaaS Applications
Bitglass
 
PPTX
Netskope — Shadow IT Is A Good Thing
Netskope
 
PDF
Cloud Application Security Best Practices To follow.pdf
Techugo
 
PPTX
The Razor's Edge: Enabling Cloud While Mitigating the Risk of a Cloud Data Br...
Netskope
 
PPTX
Xylos Clients Day - Public cloud and security go hand in hand, if you approac...
Karim Vaes
 
PDF
Outsourcing control
Shahbaz Sidhu
 
PDF
Cloud Application Security Best Practices To follow.pdf
Techugo
 
PPTX
Bitglass Webinar - 5 Cloud Security Best Practices for 2018
Bitglass
 
PPTX
Proteja sus datos en cualquier servicio Cloud y Web de forma unificada
Cristian Garcia G.
 
PDF
6 major cyber security risks to cloud computing
Tyrone Systems
 
PDF
Ciphercloud Solutions Overview hsa oct2011
Ramy Houssaini
 
PPTX
CASBs: Critical Capabilities - in partnership with ISC(2)
Bitglass
 
PDF
The 1% Who Can Take Down your Organization
CloudLock
 
Top 5 Cloud Security Threats in Healthcare
Bitglass
 
CASBs: 8 Critical Capabilities in partnership with ISMG Media Group
Bitglass
 
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Himani Singh
 
Data Breach: The Cloud Multiplier Effect
Netskope
 
Schoology cloud assignment
Vellore Institute of Technology
 
8 questions to ask when evaluating a Cloud Access Security Broker
Bitglass
 
Webinar - Bitglass and CyberEdge - Hidden Security Threats
Bitglass
 
Securing IaaS Applications
Bitglass
 
Netskope — Shadow IT Is A Good Thing
Netskope
 
Cloud Application Security Best Practices To follow.pdf
Techugo
 
The Razor's Edge: Enabling Cloud While Mitigating the Risk of a Cloud Data Br...
Netskope
 
Xylos Clients Day - Public cloud and security go hand in hand, if you approac...
Karim Vaes
 
Outsourcing control
Shahbaz Sidhu
 
Cloud Application Security Best Practices To follow.pdf
Techugo
 
Bitglass Webinar - 5 Cloud Security Best Practices for 2018
Bitglass
 
Proteja sus datos en cualquier servicio Cloud y Web de forma unificada
Cristian Garcia G.
 
6 major cyber security risks to cloud computing
Tyrone Systems
 
Ciphercloud Solutions Overview hsa oct2011
Ramy Houssaini
 
CASBs: Critical Capabilities - in partnership with ISC(2)
Bitglass
 
The 1% Who Can Take Down your Organization
CloudLock
 

More from Bitglass (20)

PPTX
Bitglass Webinar - BlueCross BlueShield of Tennessee's CASB Journey to Secure...
Bitglass
 
PPTX
Bitglass Webinar - A Primer on CASBs and Cloud Security
Bitglass
 
PPTX
Bitglass Webinar - Top 6 CASB Use Cases
Bitglass
 
PPTX
Webinar - Mobile Security Trends
Bitglass
 
PPTX
Empowering the Cloud Through G Suite
Bitglass
 
PPTX
securing the cloud for financial services
Bitglass
 
PPTX
Webinar bitglass - complete deck-2
Bitglass
 
PPTX
Mitigating the Top 5 Cloud Security Threats
Bitglass
 
PPTX
Security O365 Using AI-based Advanced Threat Protection
Bitglass
 
PPTX
5 Security Questions To Ask When Deploying O365
Bitglass
 
PPTX
6 essentials for secure BYOD in healthcare
Bitglass
 
PPTX
The Future of CASBs - A Cloud Security Force Awakens
Bitglass
 
PPTX
CASBs - A New Hope
Bitglass
 
PPTX
CASBs and Office 365: The Security Menace
Bitglass
 
PPTX
Webinar: are casbs ready for primetime?
Bitglass
 
PPTX
Security and Accountability in the Cloud (in partnership with SANS)
Bitglass
 
PPTX
The Four Horsemen of the O365 Apocalypse
Bitglass
 
PPTX
Office 365 Security: How to Safeguard Your Data
Bitglass
 
PPTX
CASBs and Office 365 (with Argyle)
Bitglass
 
PPTX
Bridging the Office 365 Security Gap - Redmond Media
Bitglass
 
Bitglass Webinar - BlueCross BlueShield of Tennessee's CASB Journey to Secure...
Bitglass
 
Bitglass Webinar - A Primer on CASBs and Cloud Security
Bitglass
 
Bitglass Webinar - Top 6 CASB Use Cases
Bitglass
 
Webinar - Mobile Security Trends
Bitglass
 
Empowering the Cloud Through G Suite
Bitglass
 
securing the cloud for financial services
Bitglass
 
Webinar bitglass - complete deck-2
Bitglass
 
Mitigating the Top 5 Cloud Security Threats
Bitglass
 
Security O365 Using AI-based Advanced Threat Protection
Bitglass
 
5 Security Questions To Ask When Deploying O365
Bitglass
 
6 essentials for secure BYOD in healthcare
Bitglass
 
The Future of CASBs - A Cloud Security Force Awakens
Bitglass
 
CASBs - A New Hope
Bitglass
 
CASBs and Office 365: The Security Menace
Bitglass
 
Webinar: are casbs ready for primetime?
Bitglass
 
Security and Accountability in the Cloud (in partnership with SANS)
Bitglass
 
The Four Horsemen of the O365 Apocalypse
Bitglass
 
Office 365 Security: How to Safeguard Your Data
Bitglass
 
CASBs and Office 365 (with Argyle)
Bitglass
 
Bridging the Office 365 Security Gap - Redmond Media
Bitglass
 

Recently uploaded (20)

PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
GamePlan Trading System Review: Professional Trader's Honest Take
SOFTTECHHUB
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
GamePlan Trading System Review: Professional Trader's Honest Take
SOFTTECHHUB
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 

CSA Research: Mitigating Cloud Threats

  • 1. webinar august 30 2016 mitigating risk for cloud applications
  • 2. STORYBOAR core questions ■ What are the top cloud security threats facing enterprises? ■ How should cloud app vendors approach government cooperation? ■ What capabilities are most valuable for protecting data? ■ Do IT leaders have adequate visibility into user activity? ■ How are organizations dealing with the shadow IT threat?
  • 3. STORYBOAR ■ A few organizations now cloud-only ■ Most cloud-first or shifting to a cloud-first mentality ■ Rate of adoption continues to grow rapidly across all industries cloud adoption continues to rise most organizations have deployed at least one cloud app
  • 4. poll: what are your top cloud security concerns
  • 5. STORYBOAR biggest concern - external sharing followed by unauthorized devices, data sync ■ Nearly 60% see external sharing as a key concern ○ Cloud apps have made one click sharing easier ■ Data sync concerns suggest orgs need control over sync clients
  • 6. STORYBOAR ■ Organizations need solutions that leverage cloud APIs for control over sharing ■ Real-time DLP limits risk at access and download ■ UEBA trending up sharing controls and DLP top cloud sec capabilities access controls are increasingly valuable
  • 7. STORYBOAR ■ One in three say yes, they expect cloud providers to cooperate with government ■ Small handful support government mandated encryption algorithms most opposed to government cooperation over 30% say providers should turn over encrypted data
  • 9. STORYBOAR ■ Many are turning to third-party solutions ○ Separation of systems for data-at-rest provides additional level of security ■ 17% take no security measures. IT leaders use encryption to combat security concerns most are taking steps to limit risk of data leakage
  • 10. STORYBOAR ■ Basic visibility provided by some cloud apps ■ Cross-app visibility is limited orgs without CASBs most enterprises lack adequate visibility cross-app visibility remains a challenge
  • 11. STORYBOAR ■ Written policies ineffective in protecting data ■ Blocking apps encourages employees to work around IT ■ Useful technical controls, like proxies, used by 29% most orgs lack technical controls to combat shadow IT a growing problem needs an effective solution
  • 12. STORYBOAR the enterprise is responsible for secure saas usage components usage/consumption data application services servers & storage network layer data application infrastructure owner enterprise
  • 13. STORYBOAR security must evolve to protect data outside the firewall ungoverned access to corporate data in the cloud hidden Shadow IT threats sensitive cloud data on unmanaged devices
  • 14. STORYBOAR findings recap ■ Public cloud adoption continues to rise, only 16% have no SaaS apps deployed. ■ Split on government cooperation. 55% are opposed. ■ Shadow IT a concern, but few organizations have technical controls in place. ■ Security incidents still rampant. 59% due to unwanted external sharing. ■ Cloud visibility is lacking. Less than 30% can monitor user logins and activity.
  • 17. resources: more info about cloud security ■ report: mitigating cloud threats ■ whitepaper: definitive guide to casbs ■ report: cloud adoption by industry

Editor's Notes

  • #5: what are your top cloud security concerns
  • #9: Security capabilities most critical in your org Visibility into how corporate data is being used Control over access to data Encryption of sensitive data Potential for breaches Something else
  • #13: When talking to potential customers, sometimes this comes up. Aren’t cloud vendors already protecting their apps with native security features? Very simple framework for thinking about this. WSJ test.
  • #16: in: CA, NY, MA, IL, N