AccelOps Cloud Security Survey Finds Network Security Trails Behind Cloud Usage

Feb. 21, 2014
Responses underscore the critical need for visibility into security threats

SANTA CLARA, Calif. ā€“ Feb. 20, 2014 ā€“ AccelOps, an analytics-driven IT Operations Management provider for cloud and virtualized infrastructures, today announced its global survey of 140 IT security professionals found that while cloud usage continues to rise, cloud security remains stagnant. Results indicate that 73 percent of survey respondents are running a greater number of mission-critical applications in the cloud this year, while only 42 percent of respondentsā€™ networks are more secure.Ā  The survey was conducted at the recent Cloud Expo West conference 2013 in Santa Clara, Calif.

The surveyā€™s findings underscore the critical need for visibility into security threats. Ninety-two percent of respondents said visibility into potential network threats would be ā€œvery importantā€ or ā€œfairly important,ā€ and 77 percent of the respondentsā€™ organizations use multiple tools to monitor security and network performance.

ā€œWithout the tools to secure data and manage risk, organizations are not fully benefiting from their investment in the cloud,ā€ AccelOps President and CEO Flint Brenton said. ā€œAs migration to cloud and virtualized environments continue to rise, cloud security should be top of mind for all businesses.ā€

Organizationsā€™ compliance requirements are widespread, with more than 65 percent saying they must comply with either Payment Card Industry Data Security Standard (PCI DSS), the Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley (SOX), Gramm-Leach-Bliley (GLBA), Control Objectives for Information and Related Technology (COBIT)Ā  and/or North American Electric Reliability Corporation/Federal Energy Regulatory Commission (NERC/FERC) regulations.

As a result of the need for visibility and ways to reduce risk, along with adhering to compliance requirements, IT managersā€™ priorities for 2014 include: 1) Taking the pain out of compliance by using audit-tested, out of the box reports; 2) Consolidating security and monitoring tools to reach root cause more quickly; and 3) Being more diligent about securing data in the cloud.

Given the inhibitors identified and that fewer than half of those using cloud services have deployed a hybrid model, there is clearly a need for a single, unified platform that can identify security threats and monitor IT operations across traditional, private and public cloud infrastructures.

Summary of Findings:

  • 73 percent of respondents said their organizations are running more mission-critical applications in the cloud services than a year ago.
  • 42 percent of respondents said their network is more secure than a year ago.
  • Although 92 percent say knowing about future potential problems would be important, only 52 percent say that their current network tools warn them of future potential threats.
  • 26 percent of respondents said they use more than five tools to monitor security and network performance. Another 51 percent use two to four tools.
  • Despite running multiple IT monitoring tools, only 55 percent say they are able to correlate data from different tools to get to root cause of problems.
  • 37 percent say preparing for compliance audits is ā€œa big distraction from our usual workā€ and ā€œrequires ā€˜all hands on deckā€™ and takes days or weeks to complete.ā€

AccelOpsā€™ software enhances cloud security by providing a ā€œsingle pane of glassā€ view of security, performance, and availability information from almost any source across an organizationā€™s entire data center infrastructure ā€“ physical, virtual, on-premise or cloud-based. Patented real-time analytics technology cross-correlates log and event data with context in real time to make sense of complex IT patterns and events as they happen.

More survey findings are also available on AccelOpsā€™ ā€œTop IT Priorities for 2014ā€ Infographic.

(Photo courtesy stock.xchng/jodax)
There are six layers to securing a typical data center.