Have you hired any staff specifically for cloud security?

CloudSecurity & GRC

Yes - one20%

Yes - multiple63%

No, but we might in the future12%

No3%

Not sure

307 PARTICIPANTS
3.4k viewscircle icon1 Comment
Sort by:
Group Director of Information Security in Bankinga year ago

'Cloud security' is a term which now encompasses lots of skillsets. Skillsets that now need to be considered are:
1. Securing cloud accounts / subscriptions requiring knowledge of the security and reliability pillars of 'Well Architected Frameworks'.
2. Tools that secure the boundaries of cloud accounts/subscriptions i.e. Firewalls, WAFs, Micro segmentation, CASB/CAASM etc.
3. Knowledge of security best practices for workloads and shared responsibility model for IaaS, PaaS, SaaS etc.
4. Knowledge of secure software development lifecycle (S-SDLC) if you intend to engage with active software development on the cloud platform.
While you consider hiring the staff, chances of one guy having knowledge of all of the above and more should be considered. I know I haven't answered your poll query but thought of highlighting the complexities behind hiring decisions related to 'cloud security'. 

Content you might like

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Read More Comments

With AI adoption accelerating across enterprises, what do you view as the top information security challenge that leaders should address? How can CISOs, VPs and Director’s align governance, risk and security investments to enable AI innovation without creating new exposures?

Read More Comments

Which messaging queue is the best?

RabbitMQ13%

Amazon SQS58%

Apache Kafka18%

Google Cloud Pub/Sub9%

View Results

Which key pentesting capability do current AI-driven vendor solutions most fail to cover?