One study shows what many of us already suspected: Cloud complexity makes data more vulnerable, even with the best security practices and technologies in place Credit: Thinkstock According to the 2020 Thales Data Threat Report – European Edition, European companies have a false sense of security when it comes to protecting themselves. Only two-thirds (68 percent) see themselves as vulnerable, down from 86 percent in 2018. This confidence contradicts the findings of the survey, where 509 executives revealed that slightly more than half (52 percent) of their European companies were hacked or failed a compliance audit in 2019. Core to this issue is the belief by 40 percent of respondents that the complexity of their business environments makes their data much less secure. It’s no secret that multicloud adoption is the main driver of cloud complexity, with 80 percent of businesses using more than one IaaS cloud provider. Cloud complexity has been identified during the past few years as an issue that arises with multicloud deployments. Most enterprises are aware of operational problems that arise when dealing with two or more IaaS cloud providers at the same time, but most have not yet linked complexity with security issues. As always, it’s one thing to declare a problem, and another to find solutions. Here are a few suggestions: Invest in security management layers. These could be one or more security systems that can work across cloud providers. Although these layers are not magic solutions, they do remove those who operate security systems (secops) from the need to deal with the native cloud security of multiple providers. This reduces complexity and the likelihood that a complicated deployment will lead to security holes that aren’t discovered until it’s too late. Consider the cloud complexity trade-off before going to complex cloud deployments. Although it’s good to pick best-of-breed technology for your application and data deployments, I see many Global 2000 enterprises managing five or more cloud providers. This creates a complexity nightmare with its obvious negative impacts, and that includes security. Multicloud deployments are fine, but you need to consider the operational costs and risks of using more than two public clouds. Consider security during the architectural planning phases. The days of security being the last step in a deployment are long gone. Security planning should be systemic to everything you do. Cloud complexity will be with us for the next several years as we learn more about the challenges of operating plural clouds. I suspect the complexity/security relationship will get more attention when complexity is determined to be the root cause of some high-profile data breaches. Related content analysis Azure AI Foundry tools for changes in AI applications Microsoft’s launch of Azure AI Foundry at Ignite 2024 signals a welcome shift from chatbots to agents and to using AI for business process automation. By Simon Bisson Nov 20, 2024 7 mins Microsoft Azure Generative AI Development Tools analysis Succeeding with observability in the cloud Cloud observability practices are complex—just like the cloud deployments they seek to understand. The insights observability offers make it a challenge worth tackling. By David Linthicum Nov 19, 2024 5 mins Cloud Management Cloud Computing news Akka distributed computing platform adds Java SDK Akka enables development of applications that are primarily event-driven, deployable on Akka’s serverless platform or on AWS, Azure, or GCP cloud instances. By Paul Krill Nov 18, 2024 2 mins Java Scala Serverless Computing analysis Strategies to navigate the pitfalls of cloud costs Cloud providers waste a lot of their customers’ cloud dollars, but enterprises can take action. By David Linthicum Nov 15, 2024 6 mins Cloud Architecture Cloud Management Cloud Computing Resources Videos