• January 27, 2020
  • Catagory Multi-Cloud

Multi-cloud security includes securing public cloud instances

By : Justin Folkerts

Effective, robust multi-cloud security can’t be an afterthought. Securing public cloud instances is one of many significant operational considerations when embracing a multi-cloud strategy.

By making multi-cloud security an upfront priority, you prevent a lot of headaches that would inevitably pop up down the road, including interoperability issues. It also gives you a template for best practices and policy when securing public cloud instances in the future.

Draw a map of your multi-cloud security

Effectively securing public cloud instances should be guided not only by today’s needs from the platform but also how it might meet future business requirements as part of a broader multi-cloud environment. You need to align your business drivers for running multiple clouds with a security strategy so you can reduce—if not eliminate—weak links that can lead to data breaches and non-compliance with regulatory requirements and privacy legislation.

Define cloud workload security requirements

Multi-cloud’s reason for being reflects the trend toward lines of business and different areas of IT wanting to use the best cloud for the workload based on feature and performance needs. But multi-cloud security is no different than hybrid cloud environments in that you must keep in mind data confidentiality, integrity and availability.

Evaluate built-in cloud security features

Each public cloud platform comes with its own built-in security controls but securing public cloud instances will vary from provider to provider, even if the service is the same. How Amazon Web Services (AWS) secures a backup service offering will differ from that of Microsoft Azure, for example, so make you must understand the embedded security controls and tools for each cloud platform, and which ones are switch on by default, such as data encryption. Once you’ve established foundational multi-cloud security, you can augment appropriately on a per-platform basis.

Layer on additional security as needed

Multi-cloud security requires consistency. Once you understand what’s already built into the various cloud platforms you’ve spun up for each workload, you can add more layers, including third party tools, so you’re always applying global security policy automatically no matter how your multi-cloud environment grows or changes. Automation is critical to effectively securing public cloud instances in a scalable manner that keeps your overall environment manageable.

Multi-cloud security means 24/7 monitoring

Securing public cloud instances in a hybrid model usually means relying on security tools from a specific provider or one you’ve selected for monitoring your on-premises environment. Multi-cloud security means you must maximize visibility across your entire portfolio of cloud deployments and any other systems with which they may interact.

Multi-cloud security requires significant forethought if you’re achieve and maintain the necessary visibility to mitigate risk and meet today’s ongoing compliance and regulatory pressures. Securing public cloud instances in a multi-cloud environment also means knowing for certain who’s responsibility for what and establishing practices so you can scale and automate security with the pace of business and a cloud-first strategy.