While Cloud transformation offers incredible opportunities and benefits for organisations, migrating to Cloud environments without fully understanding potential security challenges can open up the organisation to new threats and increase its risk posture. But Cloud technologies themselves can boost your Cyber Resiliency.
In Episode Four the series takes an in depth look at Cyber Resiliency, the need for having a clear an actionable strategy, and how Cloud technologies and approaches can support it.
“Cloud & Clear” host Des O’Connor, Cloud Intelligence Lead UK at Dell Technologies, is joined by Narjis Zaidi, Senior Director, Deloitte.
Listen In To Learn
-
- Why businesses are finding it challenging to align Cyber Resiliency and Multi-Cloud architectures
- Why knowing the main reason for transitioning to the Cloud is vital to understanding the right Cyber Resiliency pathway
- Why it’s key to consider survivability over continuity
- How a holistic Cyber Resiliency strategy is different to backing up, and why backing up is not enough
Asking yourself the big question
“The challenge for many businesses is keeping resiliency aligned with Multi-Cloud architecture.” – Narjis Zaidi
The big question to ask clients who want to make their transition towards Cloud environments is: Why? Knowing what the key driver for their decision is, be it cost, resilience, or availability makes all the difference in mapping their pathway towards the Cloud.
Every client is different, and as such their vision of (and needs around) Cyber Resiliency will also be different. For some, implementing Cyber Vaults will be most beneficial, while for others the focus will be on writing processes or streamlining strategies. Whatever the priority focus, it is important to define new and more flexible operating models, and to embed these across organisations, to ensure they can keep pace with evolving cyber threats.
Making yourself available
There has been a shift from ‘petty’ Cybercrime to large scale Cyber-attacks that can bring global organisations to the brink of collapse. For businesses modelled around providing clients with uninterrupted services, even persistent small scale interruptions can significantly impact revenue and reputation alike.
Ensuring underlying infrastructure is resilient so that businesses can continue running at optimal levels is the cornerstone of ‘availability’. Maintaining availability is important to both on-prem and Cloud based workflows, and when it comes to Cyber Resiliency it is worth remembering that end users aren’t as focused on where their data might be stored as they are about the Cloud based services, they have paid for being available – whenever needed.
Keeping yourself accountable
“One of the fundamental principles of risk management that seems to be forgotten is that ‘you can’t outsource accountability’.” – Narjis Zaidi
Current regulations rightfully place a heavy burden of accountability when it comes to data protection. Data owners can face punitive financial penalties as well as other ramifications for data breaches under far-reaching regulations like GDPR.
As Narjis observes, while you can outsource processes and data handling, when it comes to the Cloud, you cannot outsource responsibility and accountability. When data is stored in the Cloud, the responsibility of implementing data protection and security measures may transition to the Cloud Service Provider, but the business collecting the data remains the ‘data owner’. So, the data remains their responsibility, and they will still be held legally (and possibly financially) accountable by regulators when there is a data breach – even if this might be the fault of the CSP.
At Dell Technologies, our objective is to provide a deep and broad portfolio of products, delivering specialist solutions for our clients, and partners enabling these solutions. This discussion, which describes the clear need for comprehensive and flexible Cyber Resiliency, is a clear example of the many ways we can support your deployment and needs.
You can listen to all episodes of “Cloud & Clear” podcast, including this conversation on Cloud Cyber Resiliency, here.
