Cloud Data Management and Security: Another Day, Another Breach

Posted 06/08/2017 by Matt Tyrer

I’ve said it before and I'll say it again: just because you’ve moved to the cloud or embraced it, for some level of XaaS doesn’t mean you can forego all of the best practices you’ve built around your data over the years. You still need to protect, secure and control your data and who can access it.

Recently there was a breach at OneLogin - the second in 12 months. If you rely on its password services for single sign-on, you would be wise to change those passwords and keys. The ultimate issue is not that there was a breach, but that people continue to believe they can hand their eggs over to someone else - and not be concerned about the basket. It’s someone else’s problem to worry about that. Except, it’s still your egg. If there are holes in the basket (data loss), or someone took the egg because the lid was left open (i.e., leak, ransomware, malware) you’re the one left egg-less!

We may not find out the reason behind the breach for some time, but we're speculating it likely will come down to human error – a phishing email clicked; a 'dodgy' website visited; a user from an already compromised system logging into their elevated account; or a patch not applied to a key system.

So what can I do to keep my nest eggs safe?

  1. Protect the egg basket: Proper data protection should be applied to data in the cloud just as within the data center. Make sure you have a solution that can cover both.
  2. Secure the eggs: Encryption and other data access/authentication tools are important to restrict who can see what and has access to what, so none of the foxes steal those eggs from under your nose. Or if they still manage to grab them, the data is useless.
  3. Have more than one basket: Most cloud participants are using an average of eight different cloud services from various providers. Avoid having all your eggs in one basket, but be sure you have a means to track what eggs are where, when and why. Be sure you can move those eggs if needed.

Commvault and Cloud Data Management

Putting the cloud at arm’s length is not the solution, either. You need to extend your business to the cloud, while maintaining visibility and control. The Commvault Data Platform lets you virtually wrap your arms around your data regardless of where it resides – cloud, on-premises, virtual, physical, or carrier pigeon (well, maybe not the last one). It allows you to leverage your policies and security on your data 'eggs' no matter what basket they’re in.

Learn more via the “4 Essential Fundamentals to Increasing Agility in the Cloud” and "Protecting Against Ransomware."

Be aware, be prepared, be vigilant and you can embrace the cloud with security and ease.

Matt Tyrer, with nearly a decade of Commvault sales and technical expertise, is the Solutions Marketing lead for the Americas. He has more than 18 years of experience in the IT industry, covering data and information management, cloud, compliance, enterprise storage, data center consolidation and migration, disaster recovery for public and private sector clients across Canada and around the globe.