Cloud Migration Challenges For Healthcare Organisations

The COVID-19 pandemic has forced healthcare organisations (HCOs) to accelerate their digital transformation and cloud adoption by almost 90%, with remote working and cost savings viewed as the main reasons to implement a cloud infrastructure. This was a result of a global survey from Trend Micro, which surveyed more than 2,500 IT decision makers across several industries, including healthcare. 

With digital transformation comes a higher level of cyber threat.  The survey showed that the sector may have over-estimated its ability to protect its cloud environment as 43% of HCOs revealed that a skills gaps was a barrier to migration and only 40% are confident they secure their part of the Shared Responsibility Model.

Trend Micro commissioned Sapio Research to carry out the survey and the results show that 88% of HCOs have accelerated their cloud adoption because of the pandemic. Remote working, cost savings and improved IT agility were three main reasons for the switch to cloud-based infrastructure. 

Rapid shifts to the cloud may leave organisations at higher risk of cyber threats and the survey has identified four challenges HCOs reportedly faced when moving to cloud-based environments:      

  • Skills shortages: 43% revealed that skills gaps are a persistent barrier to migrating to cloud security solutions.
  • Day-to-day operations: Setting and maintaining policies (34%), patching and vulnerability management (32%), and misconfigurations (32%) were challenges of protecting cloud workloads.
  • Increased costs: 43% have spent more on capital expenses and paying for contracted out services, while 39% have spent more on operational and training costs since migrating.
  • Security responsibility: Just 40% are confident they secure their part of the Shared Responsibility Model.

While cloud migration isn’t simple, it can be enabled and improved using the right security tools. “Security is another aspect of building well, not a separate function. And security controls help teams build better in the cloud ....Security can be an accelerator for building in the cloud. Using the right tools and understanding the platforms you’re using is key to making that happen.” said Mark Nunnikhoven, VP of cloud research at Trend Micro. 

The healthcare sector has been on the frontline in the struggle against COVID-19 and digital transformation can make a positive impact on productivity and patient care during this time of critical need.  However, it is essential that the broader attack surface of an expanded digital infrastructure is given due consideration.

With the right cloud-ready solutions in place, HCOs can maximise cloud benefits without putting mission-critical systems or patient data at risk. Such tools can also minimise skills challenges by spotting misconfigurations, automating patching and policy management, and integrating security into DevOps, across both cloud and on-premise environments.

Trend Micro:      Bloomberg:     Cision:     Image: Unsplash

You Might Also Read:

The Five Best Ways To Secure Your Cloud Environment:

 

« More Critical Problems With SolarWinds
Everything You Need To Know About Hashing Algorithms »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ISACA

ISACA

ISACA is a global professional association and learning organization for members who work in information security, governance, assurance, rissk and privacy.

NetMotion Software

NetMotion Software

NetMotion Software specializes in mobile performance management solutions to manage, secure and support the mobile enterprise.

Falanx Cyber

Falanx Cyber

Falanx Cyber provides enterprise-class cyber security services and solutions. We deliver end-to-end cyber capabilities, either as specific engagements or as fully-managed services.

S2 Grupo

S2 Grupo

S2 Grupo is the benchmark company in Europe and Latin America, for Cyber Intelligence and mission critical systems operations.

macmon secure

macmon secure

macmon secure develops network security software, focussing on Network Access Control.

TechBeacon

TechBeacon

TechBeacon.com is a digital hub by and for software engineering, IT and security professionals sharing practical and passionate guidance to real-world challenges.

Vaadata

Vaadata

Vaadata are experts in ethical hacking. We secure your web, mobile and IoT platforms.

Titans24

Titans24

Titans24 is a Software-as-a-Service security platform for web applications. It prevents attacks on business websites that are protected under 11 cyber-security layers.

Cybil

Cybil

Cybil is a publicly-available portal where members of the international cyber capacity building community can find and share information to support the design and delivery of programs and projects.

Keyavi Data

Keyavi Data

With Keyavi’s evolutionary data protection technology, your data stays within the bounds of your control in perpetuity.

BLUECYFORCE

BLUECYFORCE

BLUECYFORCE is the leading professional training and cyber defense training organization in France.

Neptune Cyber

Neptune Cyber

Neptune is a cyber security company that works exclusively in the marine sector. Our team combines experts in shipbuilding, maintenance and operations and cyber security testing and design.

Cognilytica

Cognilytica

Cognilytica’s Cognitive Project Management for AI (CPMAI) training and certification is recognized around the world as the best practices methodology for implementing successful AI & ML projects.

SecurEyes

SecurEyes

SecurEyes is a leading cybersecurity firm that provides specialised services, including cybersecurity assessments, managed services, and governance risk and compliance services.

Seal Security

Seal Security

Seal Security revolutionizes software supply chain security operations, empowering organizations to automate and scale their open source vulnerability remediation and patch management.

Canary Technology Solutions (Canary IT)

Canary Technology Solutions (Canary IT)

A Cloud, Cyber Security, Retail Solutions and Managed IT Services provider for over 25 years, we safeguard and revolutionise business through technology and foresight.