Half of firms moving personal data off the cloud, research finds
Published On: May 16, 2019 |
A new survey has revealed almost half of companies that have adopted cloud storage solutions for the storage and processing of sensitive data are rethinking this strategy in response to growing security concerns.
Security software provider Netwrix's 2019 Cloud Data Security Report found some 46 per cent of businesses are looking to shift their customers' personally identifiable information (PII) from the cloud back to on-premise alternatives in the belief they will enjoy greater security and control over such data.
This comes after one in three firms (33 per cent) that used the cloud for storage of PII experienced a security incident during the last 12 months. The study found that compared with 2018, the share of accidental errors has increased by 14 per cent and the share of malware attacks rose by 11 per cent.
However, the company warned that simply moving back to an on-premise solution alone will not address any security concerns businesses have. They must also have a comprehensive strategy in place that gives them full visibility into their data and ensuring they have a complete understanding of what information they possess, where it is located, and who has access to it.
Chief executive of Netwrix Steve Dickson said: "Organisations are misled by the idea that moving customer data back on premises will ensure data security. In reality, without a data security programme in place, these organisations are playing a simple 'shell game'."
However, the survey also found many firms are failing to put in place the necessary precautions that will protect their sensitive PII data, regardless of where it is stored, and this could cause problems if they do experience a data breach.
For instance, three-quarters of organisations that failed to classify all of their cloud-based data suffered an incident, while more than a third of organisations surveyed (36 per cent) couldn’t identify who actually was at fault for a security breach in the cloud, compared to just six per cent in 2018.
Mr Dickson added: "Organisations need to inventory their data to ensure they know where all the customer data resides, migrate it to a secure location and implement an auditing solution to ensure only the right people have access to the right data."
Share This Post, Choose Your Platform!
With over 20 years in the business telecoms industry and an unrivalled reputation of delivering excellent, personal customer service, Arrow is one of very few companies in the UK able to provide a full telecoms, IT and energy consultancy and service proposition.
Savings through automation, scale, improved service. We’ve got that covered. But the true value comes with empathy, through empowerment, collaboration. It’s connecting people that drives us forward. It’s people that make tomorrow happen.
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.