One study shows what many of us already suspected: Cloud complexity makes data more vulnerable, even with the best security practices and technologies in place Credit: Thinkstock According to the 2020 Thales Data Threat Report – European Edition, European companies have a false sense of security when it comes to protecting themselves. Only two-thirds (68 percent) see themselves as vulnerable, down from 86 percent in 2018. This confidence contradicts the findings of the survey, where 509 executives revealed that slightly more than half (52 percent) of their European companies were hacked or failed a compliance audit in 2019. Core to this issue is the belief by 40 percent of respondents that the complexity of their business environments makes their data much less secure. It’s no secret that multicloud adoption is the main driver of cloud complexity, with 80 percent of businesses using more than one IaaS cloud provider. Cloud complexity has been identified during the past few years as an issue that arises with multicloud deployments. Most enterprises are aware of operational problems that arise when dealing with two or more IaaS cloud providers at the same time, but most have not yet linked complexity with security issues. As always, it’s one thing to declare a problem, and another to find solutions. Here are a few suggestions: Invest in security management layers. These could be one or more security systems that can work across cloud providers. Although these layers are not magic solutions, they do remove those who operate security systems (secops) from the need to deal with the native cloud security of multiple providers. This reduces complexity and the likelihood that a complicated deployment will lead to security holes that aren’t discovered until it’s too late. Consider the cloud complexity trade-off before going to complex cloud deployments. Although it’s good to pick best-of-breed technology for your application and data deployments, I see many Global 2000 enterprises managing five or more cloud providers. This creates a complexity nightmare with its obvious negative impacts, and that includes security. Multicloud deployments are fine, but you need to consider the operational costs and risks of using more than two public clouds. Consider security during the architectural planning phases. The days of security being the last step in a deployment are long gone. Security planning should be systemic to everything you do. Cloud complexity will be with us for the next several years as we learn more about the challenges of operating plural clouds. I suspect the complexity/security relationship will get more attention when complexity is determined to be the root cause of some high-profile data breaches. Related content analysis Generative AI won’t fix cloud migration You’ve probably heard how generative AI will solve all cloud migration problems. It’s not that simple. Generative AI could actually make it harder and more costly. By David Linthicum Jul 12, 2024 5 mins Generative AI Artificial Intelligence Cloud Computing analysis All the brilliance of AI on minimalist platforms Buy all the processing and storage you can or go with a minimum viable platform? AI developers and designers are dividing into two camps. By David Linthicum Jul 09, 2024 5 mins Generative AI Cloud Architecture Artificial Intelligence analysis The next 10 years for cloud computing Despite AI's explosive growth, the industry still needs to face facts that customers are unhappy about costs and vendor lock-in. By David Linthicum Jul 05, 2024 5 mins Amazon Web Services Google Cloud Platform Microsoft Azure analysis Serverless cloud technology fades away Serverless was a big deal for a hot minute, but now it seems old-fashioned, even though its basic elements, agility and scalability, are still relevant. By David Linthicum Jul 02, 2024 4 mins Serverless Computing Cloud Computing Software Development Resources Videos