Shared responsibility challenges
1. Shared responsibility challenges
The shared responsibility model has lots of benefits, but sharing security responsibilities also creates a new set of challenges. Learning to identify and navigate these challenges will improve your effectiveness as a cloud security professional. The first and most common challenge is misconfiguration. Misconfiguration is a leading cause of security breaches in the cloud space. Cloud technology is constantly evolving, and managing the frequency of updates and new integrations is difficult for a lot of organizations. Misconfigurations sometimes happen because of inadequate security during development. Insufficient security makes it easier for malicious actors to infiltrate systems and source code repositories. More importantly, misconfiguration can leave data exposed, which can result in major regulatory fines for an organization. As a cloud security professional, you can help a business avoid these types of security vulnerabilities by closely monitoring resource provisioning, and incorporating automation and safe security policies. Another measure that you can use to prevent misconfiguration includes properly managing identity and access management, or IAM policies, and using the principle of least privilege. The principle of least privilege means that a security architecture grants the minimum authorizations needed for a principal to perform its function which in turn reduces risks. Suppose you need to unlock a door in a building. The principle of least privilege means that you would have a key that only unlocks that door rather than a key that unlocks every door in the building. Next, larger companies usually use a variety of services to host and manage their cloud resources. Companies must consider the different services CSPs offer, and how these services relate to one another. Vulnerabilities in security may arise if the business and the CSP don’t closely monitor services when sharing responsibility. Another shared responsibility challenge you might come across involves tracking how regulations change as your company and market grow. The company you work for might acquire other companies or expand its product line, both of which could change the security landscape, the controls needed, and the established service level agreements with their CSP. Consider this scenario. A business acquires a small tech company based in a different country. The business must now assume responsibility for the tech company’s data as a result of the acquisition. Companies within a given country have to consider and comply with other countries' guidelines. Finally, remember that security is an ongoing process. It’s important for your security team to stay up-to-date with the latest threats and vulnerabilities that may harm the business. In this video, you learned about challenges organizations might face when they work in a shared responsibility model. A better understanding of shared responsibility’s implications can help customers make informed decisions about their security practices.2. Let's practice!
Create Your Free Account
or
By continuing, you accept our Terms of Use, our Privacy Policy and that your data is stored in the USA.