Enterprise Security on the Cloud

 

Web-based interactive applications, applications offered in the cloud, application components available on cloud, multiple software platform components, virtual infrastructure and physical infrastructure - more the gateways available more the chances of security breaches. Now, since enterprise are considering cloud based services in big way, the fear rallied about enterprise security on cloud is only natural. According to Forrester approximately 70% of enterprises on both continents (North America and Europe) say they are “concerned” or “extremely concerned” about how to protect data stored on the cloud, particularly pubic and hybrid clouds. Concerns about cloud services are security, privacy and compliance including legal implications of intellectual property (IP) of the data on the cloud.

 

The responsibility of sensibly addressing the range of security concerns of moving to the cloud rests both with the service provider and the enterprise itself, but more so with the service provider. The reason most enterprises are of the view that enterprise security concerns should be addressed by their service provider is the fact that they firmly believe that security is nothing but part and parcel of the service they have rendered. Now this puts pressure on the service provider to ensure the solution provided takes into consideration the enterprise security aspects as well. It is thus the responsibility of the service provider to in turn work with an expert testing vendor to identify loopholes if any and have them fixed before the solution is cut into production for its customer.