Broadcom announced the general availability of VMware Tanzu Platform 10 that establishes a new layer of abstraction across Cloud Foundry infrastructure foundations to make it easier, faster, and less expensive to bring new applications, including GenAI applications, to production.
Navigating Cloud Security Challenges: Highlights from the Latest Check Point Cloud Security Report
May 23, 2024
The 2024 Cloud Security Report from Cybersecurity Insiders and Check Point is now available for download. The new report draws on the experience and perspective of over 800 cloud and cybersecurity professionals to provide a deep look at the current state of cloud security. We asked these industry experts to evaluate the effectiveness of their existing security measures and to report on the adoption of the latest security solutions at their companies. Taken all together, these insights provide a comprehensive view of the big opportunities and persistent challenges of cloud security.
Increase in Cloud Security Incidents
What we know: The 2024 Cloud Security Report illuminates a world of increasing cloud security incidents. 61% of surveyed organizations reported breaches within the last year, with data security breaches specifically emerging as the most common type of issue. In previous years misconfiguration had been the top cloud security issue, but in this latest report configuration issues dropped down to just 12% of reported issues. That is a sign of growing experience in this area of cloud security, but also indicates that increasing usage by companies and increasing attention from malicious actors is increasing the potential threats the cloud faces.
What you can do: To effectively deal with the rising number of incidents and eliminate potential blind spots, it is essential for organizations to embrace a prevention-centric approach. This entails taking proactive security measures rather than reacting to threats as they arise. By harnessing advanced, AI-driven security solutions, organizations can anticipate and thwart potential security breaches before they cause significant harm. This aligns with the broader trend within the industry towards a more preemptive security strategy.
Barriers to Effective Cyber Defense
What we know: Cloud complexity and continual technological changes have resulted in a situation where, in many organizations, cloud security falls on the DevOps teams. Visibility and oversight are limited, and survey respondents identify lack of security awareness and lack of skilled personnel as two of the top barriers standing in the way of effective cyber defense.
What you can do: These signs all point to the need for a structural re-adjustment of security, with advanced training and development, as well as the adoption of consulting and managed services in order to free up resources and better educate existing staff.
Rapid CNAPP + Prevention Adoption
What we know: The report identifies methods organizations are currently using to address the challenges of cloud security. Many respondents see promise in AI-enhanced detection and remediation, which can be especially useful against zero-day threats. More than 50% have either partially or fully implemented a CNAPP (Cloud Native Application Protection Platform) solution, which unifies multiple aspects of cloud security to make it easier to automate processes.
What you can do: Overall, the data shows that the cloud security world is stretched thin and seeking solutions that can increase the efficiency of their efforts. Limited staffing means that prevention and other automated processes are much more valuable than manual detection and remediation. More alerts are not the answer — instead, efforts should be made to streamline security processes so employee attention can be focused where it will make the most impact.
Investing in a CNAPP platform that incorporates both WAF and network security measures is essential for optimal prevention of potential threats. Unfortunately, many solutions currently available on the market neglect this vital integration, leading to an excessive number of alerts and higher levels of risk.
Methodology: The 2024 Cloud Security Report is the result of perspectives from various tech and security roles, drawn from both small and large companies, across a wide variety of industries. Respondents ranged from IT specialists to the C-Suite, and represented industries including financial services, government, education, and more.
Industry News
November 07, 2024
Tricentis announced the expansion of its test management and analytics platform, Tricentis qTest, with the launch of Tricentis qTest Copilot.
November 07, 2024
Redgate is introducing two new machine learning (ML) and artificial intelligence (AI) powered capabilities in its test data management and database monitoring solutions.
November 07, 2024
Upbound announced significant advancements to its platform, targeting enterprises building self-service cloud environments for their developers and machine learning engineers.
November 07, 2024
Edera announced the availability of Am I Isolated, an open source container security benchmark that probes users runtime environments and tests for container isolation.
November 06, 2024
Progress announced 10 years of partnership with emt Distribution — a leading cybersecurity distributor in the Middle East and Africa.
November 06, 2024
Port announced $35 million in Series B funding, bringing its total funding to $58M to date.
November 05, 2024
Parasoft has made another step in strategically integrating AI and ML quality enhancements where development teams need them most, such as using natural language for troubleshooting or checking code in real time.
November 05, 2024
MuleSoft announced the general availability of full lifecycle AsyncAPI support, enabling organizations to power AI agents with real-time data through seamless integration with event-driven architectures (EDAs).
November 05, 2024
Numecent announced they have expanded their Microsoft collaboration with the launch of Cloudpager's new integration to App attach in Azure Virtual Desktop.
November 04, 2024
Progress announced the completion of the acquisition of ShareFile, a business unit of Cloud Software Group, providing a SaaS-native, AI-powered, document-centric collaboration platform, focusing on industry segments including business and professional services, financial services, industrial and healthcare.
November 04, 2024
Incredibuild announced the acquisition of Garden, a provider of DevOps pipeline acceleration solutions.
October 31, 2024
The Open Source Security Foundation (OpenSSF) announced an expansion of its free course “Developing Secure Software” (LFD121).
October 31, 2024
Redgate announced that its core solutions are listed in Amazon Web Services (AWS) Marketplace.
October 30, 2024
LambdaTest introduced a suite of new features to its AI-powered Test Manager, designed to simplify and enhance the test management experience for software development and QA teams.
