With the findings from the survey, and research performed by the SDxCentral Research Team, we identified three areas where security challenges are significant across the SDx Infrastructure today – cloud infrastructures (including public, private and hybrid data centers), the extended enterprise campus and the Internet of Things. We are seeing a lot of change, with a new generation of SDx cloud and data center security innovation rapidly entering the market.
Securing the Cloud and the Data Center
Organizations are coming to the realization they cannot ban or block cloud services – the genie cannot be put back in the bottle. Everyone is moving to the cloud to take advantage of its efficiencies, scale and agility. But as more and more enterprise data is accessed, used and stored in the cloud, IT has less and less control.
Because it is increasingly difficult to control all aspects of an organization’s Data Center environment, we are seeing data at risk – just look at any of the recent headlines. A lack of visibility and control makes it easier for data to be stolen or leaked and acceptable use policies to be violated. As a result, enterprises are struggling to protect the integrity and privacy of their data and comply with regulations to maintain ongoing operations and protect their brand/reputation.
A new security paradigm needs to emerge; one that can incorporate the shifting boundaries and make-up of the Data Center. Solutions will need to be able to identify and secure Platforms as a Service (PaaS), Infrastructure as a Service (IaaS), physical and virtualized devices, mobile apps and ephemeral (Linux) containers that are spread worldwide, often in a mix of public and private cloud hosting environments.
One of the biggest challenges associated with cloud security is being able to maintain visibility and consistent controls across an organization’s different domains. Most organizations have a mix of public, private and even hybrid cloud deployments that make it difficult to baseline, identify anomalies and apply policies.
Interestingly enough, security vendors, themselves, are using the cloud to deliver security services, both for securing enterprise campus networks and protecting enterprise private and public cloud applications. This is probably why cloud-based managed security services grew to $7.2 billion in 2014, according to Infonetics Research (recently acquired by HIS). This year, Gartner approximates that 10% of the security controls that will be deployed by organizations will be cloud-based.
What is needed are solutions that can extend an organization’s security stance across their cloud domains. The SDx Infrastructure Security vendors covered provide different approaches to this problem, including: