On the 9th of December 2019, Techcrunch (http://bit.ly/mzazleak) reported the latest data breach on the cloud. Throughout the past data breach in the cloud has happened. Blame game went on and almost all cases were because of human error or lack of understanding of security in the cloud.
In 2017 September, Equifax publicised a huge data breach where they exposed millions of personal data of their customer through an insecure employee portal. Even after identifying the issue they never fixed it immediately.
What do these stories tell us? We understand that the user who has the responsibility to secure their data rather than the hardware or software.
All major cloud services will not only provide the tin or hardware and software to their customers, but they also help with additional tools
For example, Google Cloud with whom we partner provides many such features,
- Encryption of data at rest by default.
- Bring-your-own Encryption keys.
- Utilise Certified Professionals (Google Certified Professional Security Engineer).
Amzu’s ethos on security is ‘Trust Nothing’. In our recent discussion with various industry experts, many had security concerns on moving their sensitive data in the cloud.
GCP Security Best Practices: