In The House Or In The Cloud: Which Is More Secure?

Uploaded on 2017-10-03 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Whether you are upgrading old servers because of business expansion, or considering moving to the cloud because your IT infrastructure is out of date and does not support your business as it should, there are many reasons to deliberate carefully before choosing an in-house or cloud service delivery model.

It’s a tough decision that will profoundly affect your business and the management of day to day operations.

Cloud technology is fundamentally changing the IT perspective, the way we work and communicate, but the decision about where to store company data can nevertheless be a headache for managers. Enterprises are ever more willing to adopt cloud services because of the efficiency and flexibility they bring.

Technology has moved forward, and we can easily find compelling reasons to change our business model from an in-house data center to one based in the cloud. The benefits of using cloud-based solutions are obvious, they provide fast and easy deployment of infrastructure, a reliable environment and lower TCO.

Nevertheless, security concerns can dissuade decision-makers from having sensitive data processed outside their companies.

In this context, legal requirements related to data protection and contractual liability can both be deal breakers, but the fact is that cloud security does not have to be an issue today, as the majority of providers have adopted the best security practices to protect their resources and are certified to common security standards.

Despite this, there are lingering concerns that cloud computing is less secure than the traditional approach. However, is this really true?

It is based primarily on the fact that CSOs feel uncomfortable with important company files or personal data stored on servers which they cannot physically control.

However, security is not the only aspect of exercising such physical control. You might, after all, develop and maintain your own IT system from scratch, but without rigorous attention to security it will not be as secure as you would expect, and that is true whether it is based in the cloud or in-house.

Without the right security strategy and best in class technology, both approaches can be unsecure. Thus, the real question to ask yourself is whether you feel comfortable with the security of your systems?

Data loss protection, data encryption, access control, anti-malware and DDoS protection are just a few of the areas you need to address. Secure data processing requires highly trained and experienced engineers, investment in security infrastructure and appropriate security governance. With that in mind, can you say that you are truly at ease with the effectiveness of your security?

Today, the real question is not whether we should outsource IT infrastructure, but when we will be ready to do so. Of course, switching from a traditional in-house environment to a cloud-based service is a tough choice for managers, and each of them can find different reasons to do that.

Appropriate risk assessment and IT operation analysis need to be carried out in order to make the most appropriate decision. Business expectations and the necessity of data protection are changing. They are getting more demanding. Fulfilling data availability and confidentiality requirements impacts heavily on the way IT should support business.

Establishing a reliable partnership in the areas of data center and cloud services may prove by far the better option in terms of business operation and security management when compared to your in-house solution, with the former delivering greater financial and operational benefits in the long-term.

So, cloud-based or locally-hosted? There is no one good answer, no definitive ‘best’ service delivery model for storing your company’s data. Rather, there is a ‘most appropriate’ model that depends on the unique requirements of your business, the size of your company and your budget.

For large enterprises, the decision may be strategic; for smaller companies, it could be about finding the only reasonable way of building IT structures.

InfoSecurity:

You Might Also Read:

Put Your Physical Security Into The Cloud:

Cyber Security Risks Of Cloud Computing:

« Big Data - Big Changes Coming
AI Makes People In Your Business More Important »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Cavirin

Cavirin

Cavirin’s Automated Risk Analysis Platform reduces risk and automates security and compliance.

CSIS Security Group

CSIS Security Group

CSIS provide actionable threat intelligence, prevention, incident response and 24/7 managed security services.

Secusmart

Secusmart

Secusmart provide highly secure and encrypted speech and data communication solutions.

Quadron Cybersecurity Services

Quadron Cybersecurity Services

Quadron Cybersecurity Services is a specialist in digital security, data and system protection.

Bangladesh Association of Software & Information Services (BASIS)

Bangladesh Association of Software & Information Services (BASIS)

BASIS is the national trade body for Software & IT Enabled Service industry of Bangladesh.

NSIT

NSIT

NSIT SAS is a consulting, advisory and service provider in IT systems. Solution areas include networking & infrastructure, IT management & administration, and cyber security.

Pinpoint Search Group

Pinpoint Search Group

Pinpoint Search Group's recruiters specialize in Information Management, Cyber Security, Cloud and Robotic Process Automation (RPA).

Palantir

Palantir

Palantir software empowers entire organizations to answer complex questions quickly by bringing the right data to the people who need it.

ImmuniWeb

ImmuniWeb

We Simplify, Accelerate and Reduce Costs of Security Testing, Protection and Compliance.

Ostendio

Ostendio

Ostendio is a cybersecurity and information management solutions provider that develops affordable compliance solutions for digital health companies and other regulated entities.

Kyndryl

Kyndryl

Kyndryl has a comprehensive portfolio that leverages hybrid cloud solutions, business resiliency, and network services to help optimize your IT workloads and transformations.

Arcturus Security

Arcturus Security

Arcturus is a CREST-approved cyber security consultancy created by experts in the field.

Protect AI

Protect AI

Protect AI is a cybersecurity company focused on AI & ML systems. Through innovative security products and thought leadership in MLSecOps, we help our customers build a safer AI powered world.

Iron Mountain

Iron Mountain

Iron Mountain Incorporated is a global business dedicated to storing, protecting and managing, information and assets.

Disecto Technologies

Disecto Technologies

At Disecto, we provide SaaS based Data Discovery, Classification and a remediation solution for data privacy compliance.

Xygeni

Xygeni

Xygeni is a leader in Application Security Posture Management (ASPM). Our advanced technology detects malicious code in real-time to prevent malware infections.