In The House Or In The Cloud: Which Is More Secure?

Uploaded on 2017-10-03 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Whether you are upgrading old servers because of business expansion, or considering moving to the cloud because your IT infrastructure is out of date and does not support your business as it should, there are many reasons to deliberate carefully before choosing an in-house or cloud service delivery model.

It’s a tough decision that will profoundly affect your business and the management of day to day operations.

Cloud technology is fundamentally changing the IT perspective, the way we work and communicate, but the decision about where to store company data can nevertheless be a headache for managers. Enterprises are ever more willing to adopt cloud services because of the efficiency and flexibility they bring.

Technology has moved forward, and we can easily find compelling reasons to change our business model from an in-house data center to one based in the cloud. The benefits of using cloud-based solutions are obvious, they provide fast and easy deployment of infrastructure, a reliable environment and lower TCO.

Nevertheless, security concerns can dissuade decision-makers from having sensitive data processed outside their companies.

In this context, legal requirements related to data protection and contractual liability can both be deal breakers, but the fact is that cloud security does not have to be an issue today, as the majority of providers have adopted the best security practices to protect their resources and are certified to common security standards.

Despite this, there are lingering concerns that cloud computing is less secure than the traditional approach. However, is this really true?

It is based primarily on the fact that CSOs feel uncomfortable with important company files or personal data stored on servers which they cannot physically control.

However, security is not the only aspect of exercising such physical control. You might, after all, develop and maintain your own IT system from scratch, but without rigorous attention to security it will not be as secure as you would expect, and that is true whether it is based in the cloud or in-house.

Without the right security strategy and best in class technology, both approaches can be unsecure. Thus, the real question to ask yourself is whether you feel comfortable with the security of your systems?

Data loss protection, data encryption, access control, anti-malware and DDoS protection are just a few of the areas you need to address. Secure data processing requires highly trained and experienced engineers, investment in security infrastructure and appropriate security governance. With that in mind, can you say that you are truly at ease with the effectiveness of your security?

Today, the real question is not whether we should outsource IT infrastructure, but when we will be ready to do so. Of course, switching from a traditional in-house environment to a cloud-based service is a tough choice for managers, and each of them can find different reasons to do that.

Appropriate risk assessment and IT operation analysis need to be carried out in order to make the most appropriate decision. Business expectations and the necessity of data protection are changing. They are getting more demanding. Fulfilling data availability and confidentiality requirements impacts heavily on the way IT should support business.

Establishing a reliable partnership in the areas of data center and cloud services may prove by far the better option in terms of business operation and security management when compared to your in-house solution, with the former delivering greater financial and operational benefits in the long-term.

So, cloud-based or locally-hosted? There is no one good answer, no definitive ‘best’ service delivery model for storing your company’s data. Rather, there is a ‘most appropriate’ model that depends on the unique requirements of your business, the size of your company and your budget.

For large enterprises, the decision may be strategic; for smaller companies, it could be about finding the only reasonable way of building IT structures.

InfoSecurity:

You Might Also Read:

Put Your Physical Security Into The Cloud:

Cyber Security Risks Of Cloud Computing:

« Big Data - Big Changes Coming
AI Makes People In Your Business More Important »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

FIDO Alliance

FIDO Alliance

FIDO Alliance is a non-profit organization formed to address the lack of interoperability among strong authentication devices.

Ubisecure

Ubisecure

Ubisecure provide Identity & Access Management solutions.

ODVA

ODVA

ODVA is a global trade and standards development organization whose members comprise the world’s leading industrial automation companies.

Digital Guardian

Digital Guardian

Digital Guardian is a next generation data protection platform designed to stop data theft.

Cycura

Cycura

Cycura provide advanced, customized, and confidential cyber security services, cyber investigation services, and digital forensic services to governments, companies, and organizations.

Relution

Relution

Relution is the Unified Endpoint Management platform for innovative companies and educational institutions. It enables you to manage your mobile apps and devices easily and securely.

Seavus Accelerator

Seavus Accelerator

Seavus Accelerator's goal is to create an enabling and stimulating environment for start-ups growth and provide continuous high quality acceleration and investment support.

Knowledge Transfer Network (KTN)

Knowledge Transfer Network (KTN)

KTN links new ideas and opportunities with expertise, markets and finance through our network of businesses, universities, funders and investors.

Nettoken

Nettoken

Nettoken is the first identity management platform designed for everyday internet users, to encourage awareness and control of our ever expanding digital footprint and personal cybersecurity.

Twingate

Twingate

Twingate help organizations secure and manage access to their technology resources in a world where people work from anywhere.

Ciphertex Data Security

Ciphertex Data Security

Ciphertex is a leading data security company that specializes in portable data encryption and privacy protection storage systems.

DATS Project

DATS Project

DATS Project enables the utilization of high computing power across a number of cybersecurity services, all on a pay-as-you-go basis, eliminating the need for upfront investment costs.

Hilltop Technologies

Hilltop Technologies

Hilltop Technologies is a cybersecurity company specialized in managed security services and consulting tailored for all sectors from higher education to publicly traded companies.

A&O Shearman

A&O Shearman

A&O Shearman is a law firm at the forefront of the forces changing the current of global business: energy transition, life sciences, technology, private capital, finance and beyond.

Softcell Technologies Global

Softcell Technologies Global

Softcell is one of India's leading System Integrators. We serve enterprise customers in the areas of IT Security, Mobility, Optimised IT Infrastructure, Cloud and Engineering Services.

Whiteswan Identity Security

Whiteswan Identity Security

At Whiteswan, we are committed to protecting the digital landscapes of modern enterprises with adaptive, identity-first security solutions that ensure trust, compliance, and resilience.