In The House Or In The Cloud: Which Is More Secure?

Uploaded on 2017-10-03 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Whether you are upgrading old servers because of business expansion, or considering moving to the cloud because your IT infrastructure is out of date and does not support your business as it should, there are many reasons to deliberate carefully before choosing an in-house or cloud service delivery model.

It’s a tough decision that will profoundly affect your business and the management of day to day operations.

Cloud technology is fundamentally changing the IT perspective, the way we work and communicate, but the decision about where to store company data can nevertheless be a headache for managers. Enterprises are ever more willing to adopt cloud services because of the efficiency and flexibility they bring.

Technology has moved forward, and we can easily find compelling reasons to change our business model from an in-house data center to one based in the cloud. The benefits of using cloud-based solutions are obvious, they provide fast and easy deployment of infrastructure, a reliable environment and lower TCO.

Nevertheless, security concerns can dissuade decision-makers from having sensitive data processed outside their companies.

In this context, legal requirements related to data protection and contractual liability can both be deal breakers, but the fact is that cloud security does not have to be an issue today, as the majority of providers have adopted the best security practices to protect their resources and are certified to common security standards.

Despite this, there are lingering concerns that cloud computing is less secure than the traditional approach. However, is this really true?

It is based primarily on the fact that CSOs feel uncomfortable with important company files or personal data stored on servers which they cannot physically control.

However, security is not the only aspect of exercising such physical control. You might, after all, develop and maintain your own IT system from scratch, but without rigorous attention to security it will not be as secure as you would expect, and that is true whether it is based in the cloud or in-house.

Without the right security strategy and best in class technology, both approaches can be unsecure. Thus, the real question to ask yourself is whether you feel comfortable with the security of your systems?

Data loss protection, data encryption, access control, anti-malware and DDoS protection are just a few of the areas you need to address. Secure data processing requires highly trained and experienced engineers, investment in security infrastructure and appropriate security governance. With that in mind, can you say that you are truly at ease with the effectiveness of your security?

Today, the real question is not whether we should outsource IT infrastructure, but when we will be ready to do so. Of course, switching from a traditional in-house environment to a cloud-based service is a tough choice for managers, and each of them can find different reasons to do that.

Appropriate risk assessment and IT operation analysis need to be carried out in order to make the most appropriate decision. Business expectations and the necessity of data protection are changing. They are getting more demanding. Fulfilling data availability and confidentiality requirements impacts heavily on the way IT should support business.

Establishing a reliable partnership in the areas of data center and cloud services may prove by far the better option in terms of business operation and security management when compared to your in-house solution, with the former delivering greater financial and operational benefits in the long-term.

So, cloud-based or locally-hosted? There is no one good answer, no definitive ‘best’ service delivery model for storing your company’s data. Rather, there is a ‘most appropriate’ model that depends on the unique requirements of your business, the size of your company and your budget.

For large enterprises, the decision may be strategic; for smaller companies, it could be about finding the only reasonable way of building IT structures.

InfoSecurity:

You Might Also Read:

Put Your Physical Security Into The Cloud:

Cyber Security Risks Of Cloud Computing:

« Big Data - Big Changes Coming
AI Makes People In Your Business More Important »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

AlgoSec

AlgoSec

The AlgoSec platform enables the world’s most complex organizations to gain visibility, reduce risk and process changes at zero-touch across the hybrid network.

RSA Security

RSA Security

RSA provide cybersecurity products for Threat Detection and Response, Identity and Access Management, Governance, Risk and Compliance, and Fraud Prevention.

Computest

Computest

Computest security testing services include Mobile app security, Vulnerability assessments, Attack & penetration testing, Security awareness training, Network security assessments.

Herbert Smith Freehills

Herbert Smith Freehills

Herbert Smith Freehills is a leading professional services including data protection and privacy.

Metro Systems

Metro Systems

Metro Systems offer fully integrated IT solutions & services covering Digital Transformation, Digital Infrastructure, Cyber Security and Training.

SmartCyber

SmartCyber

SmartCyber is a company specializing in custom IT projects and Cybersecurity.

Arc4dia Labs

Arc4dia Labs

Arc4dia have developed SNOW, a cyber security solution to combat the world’s most sophisticated cyber threats.

IT Career Switch

IT Career Switch

An IT Career Switch Traineeship is the easiest way to start a new career in IT or Cybersecurity with fantastic career prospects.

Quantropi

Quantropi

Quantropi is bound to be the standard for quantum-secure data communications – forever unbreakable, no matter what.

Womble Bond Dickinson

Womble Bond Dickinson

Womble Bond Dickinson is a transatlantic law firm, providing high-quality legal experience and outstanding personal service from key locations across the United Kingdom and United States.

Heartland Business Systems (HBS)

Heartland Business Systems (HBS)

Heartland Business Systems serves commercial, public sector and small to medium business with results-driven and dedicated information technology services.

DIGISOC

DIGISOC

DIGISOC, a leader in Latin America in Cybersecurity solutions, combines machine learning with human intelligence to be effective in detecting cyber threats.

Arista Middle East

Arista Middle East

Arista Middle East is part of Global Arista Technologies specializing in OT Cybersecurity.

Somos

Somos

From voice to messaging to fraud prevention and beyond, Somos are committed to developing innovative solutions that ensure that our ability to maintain trustworthy connections never stops.

Invictus International Consulting

Invictus International Consulting

Invictus International Consulting are a recognized leader in full-spectrum cyber technology solutions designed to protect the security of our nation's global defense and critical infrastructure.

SecAI

SecAI

SecAI is an innovative threat intelligence-driven, and AI-powered vendor aiming at cyber threat detection and response.