Cloud Security

(Source – Shutterstock)

Can comprehensive cloud security capabilities protect businesses?

When it comes to cloud security, organizations rely on it to secure their cloud deployments and applications. For most businesses today,  securing the cloud is a prerogative they can’t afford to take lightly, especially with more of them moving their workloads and data to the cloud.

In fact, cloud security becomes essential as businesses look to defend against security vulnerabilities from inside and outside the firewall that is resulting in more breaches and exposed data. Gartner estimates that through 2023, at least 99% of cloud security failures will be the customer’s fault. This is why, cloud users and administrators are now expected to know how cloud security services work, configure them correctly and maintain their cloud deployments.

“Organizations are just as confident critical applications and data can be safely hosted in a cloud environment as they are on-premises. So, the question becomes one of best fit; OCI’s cloud infrastructure design and new security services are very purposeful and prescriptive based on the hindsight of other cloud options in the market and the complexities and lack of automation other providers’ customers encounter. Oracle has now made cloud security easy to consume and affordable for its customers,” said Jay Bretzmann, Security Program director, IDC.

While there is a myriad of cybersecurity services available in the industry, integrating them into the current cloud capabilities can be a bit of a challenge. With the public cloud being adopted the most by businesses, having cloud-based security that can easily secure cloud deployments and applications with simple, prescriptive, and integrated services as well as do not require additional investment is top of the agenda.

As such, Oracle is expanding the built-in security services and capabilities of its Oracle Cloud Infrastructure (OCI) to help businesses protect their cloud applications and data against emerging threats. The OCI will be offering five new capabilities for threat management, including a new built-in and cloud-native firewall service and enhancements to Oracle Cloud Guard and Oracle Security Zones.

The new capabilities include:

  • OCI Network Firewall: Provides centralized protection against cyberattacks across OCI with a new cloud-native, managed firewall service.
  • Oracle Threat Intelligence Service: Aggregates threat intelligence data across different sources and manages this data to provide actionable guidance for threat detection and prevention in Oracle Cloud Guard and other OCI services.
  • Oracle Cloud Guard Threat Detector: Identifies misconfigured resources, insecure activity across tenants, and malicious threat activities.
  • Oracle Security Zones: Expands Oracle Security Zones with support for customer-defined policy sets and integrated security posture monitoring with Cloud Guard
  • Oracle Cloud Guard Fusion Applications Detector: Extends Oracle Cloud Guard beyond cloud security posture management for OCI to also monitor Oracle Fusion Cloud Applications and provide customers with a consolidated view of IaaS and SaaS security policies.

For Christopher G. Chelliah, Senior Vice President, Technology & Customer Strategy, Japan & Asia Pacific at Oracle Corporation, security should be foundational and built-in.  He explained that customers should not be forced to make a trade-off between cybersecurity and cost, especially in the cloud environment.

“Security in the cloud is always a joint responsibility between the provider and the customer and we urge customers to challenge their vendors about what they are doing to ensure they are constantly protected. Our aim is to take on more of that responsibility, whether through these new innovations, our ground up zero trust model, clear separation and isolation of tenancies, always-on encryption, or solutions like cloud guard, where we have ML and AI looking at attacks and putting a shield up against them,” commented Chelliah.