Have you hired any staff specifically for cloud security?

Cloud Security & GRC

Yes - one18%

Yes - multiple63%

No, but we might in the future14%

No3%

Not sure

310 PARTICIPANTS

3.4k views1 Comment

Sort by:

Group Director of Information Security in Bankinga year ago

'Cloud security' is a term which now encompasses lots of skillsets. Skillsets that now need to be considered are:
1. Securing cloud accounts / subscriptions requiring knowledge of the security and reliability pillars of 'Well Architected Frameworks'.
2. Tools that secure the boundaries of cloud accounts/subscriptions i.e. Firewalls, WAFs, Micro segmentation, CASB/CAASM etc.
3. Knowledge of security best practices for workloads and shared responsibility model for IaaS, PaaS, SaaS etc.
4. Knowledge of secure software development lifecycle (S-SDLC) if you intend to engage with active software development on the cloud platform.
While you consider hiring the staff, chances of one guy having knowledge of all of the above and more should be considered. I know I haven't answered your poll query but thought of highlighting the complexities behind hiring decisions related to 'cloud security'.

Content you might like

Has anyone been successful in implementing a FinOps Cost Optimization policy to turn down idle cloud instances during off hours (nights/weekends)? DId you start with non-prod environments? How are you handling logging/monitoring alerts during that time?

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

If two RFP bids are neck-to-neck on core requirements, which factor becomes the ultimate tie-breaker?

Proven outcomes – Documented success stories and measurable KPIs38%

Implementation confidence – Detailed plan, risk mitigation, and resource readiness46%

Total cost – Clear TCO, price protections, and exit terms38%

Innovation & future readiness – Ability to scale, adapt, and support emerging needs15%

Vendor relationship strength – Cultural fit, governance model, and executive commitment13%

View Results

What topics would you like to learn more about / be most likely to attend a webinar on?

Ransomware / Malware / Phishing33%

Privacy27%

Cloud Security57%

Network Security34%

Zero Trust vs. VPN33%

Remote Workforce Security28%

Seamless User Experience16%

Legal and Regulatory Compliance8%

View Results

I would like to hear from others that have implemented SailPoint Identity Security Cloud how they staffed after go-live and skills needed. Were there added duties, change in roles, etc. We have provisioners currently and going live with ISC in a few weeks. I am looking ahead to where I can implement role changes with the team. Any help would be appreciated.

Have you hired any staff specifically for cloud security?

Sort by:

Content you might like

Has anyone been successful in implementing a FinOps Cost Optimization policy to turn down idle cloud instances during off hours (nights/weekends)? DId you start with non-prod environments? How are you handling logging/monitoring alerts during that time?

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

If two RFP bids are neck-to-neck on core requirements, which factor becomes the ultimate tie-breaker?

What topics would you like to learn more about / be most likely to attend a webinar on?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

DevSecOps: Strategies, Organizational Benefits and Challenges

Green Cloud Computing

Omnicloud: The Future of Cloud Computing?

How are U.S. CISOs Addressing Liability Risk?

Take Your Insights On-the-Go