When you’re discussing technology, it’s easy to look at its merits based on an abstracted view. What I mean is, you can look at its features, costs, and architecture in isolation from the reality of your organization. When this process involves a lot of capital investment, it often requires further analysis that can put a damper on this more idealistic way of viewing it.
The problem we often see with the cloud is that because the barrier to entry is often so low, very often projects are begun with rose-colored glasses still intact. As Keith Townsend points out on this CTO Dose video, the reason we often see large insecurities around unencrypted S3 buckets isn’t due to technical deficiency (other than Amazon made them by default unencrypted for far too long).
Instead the security issue comes down to process and people. Bad security culture could be excused when IT lived within an on-site data center. But when that same culture goes to the cloud, the vulnerabilities seep into consciousness. That’s because technology as a platonic ideal isn’t very useful. It will inevitably go through the company cultural matrix, becoming a reflection of it in the process. Technology can enable better security, but without training to change corporate culture it cannot do so alone.
Keith Townsend comments:
Read more at: Why is public cloud security so hard?
- Snowflake Networks - July 25, 2018
- What Differentiates Servers in a Commodity x86 World? - July 20, 2018
- 3D XPoint Is At A Crossroads – Can Intel and Micron Deliver? - July 19, 2018
- How to create your own Docker image - July 17, 2018
- StarWind Supports SMB3 – Did You Know? - May 21, 2018
- The Challenges of Working Remotely - May 11, 2018
- StorageOS Now Available for Your Container Storage Needs - May 4, 2018
- Touching the Void: Cloudian Acquires Infinity Storage - March 29, 2018
- Thoughts on the Surface Book 2 - March 26, 2018
- Kasten Brings Enterprise Storage Features to Cloud-Native Applications - March 23, 2018