Let us start by letting you know that we love the cloud. Services like Microsoft Azure, Office365 and G-Suite have made tremendous strides in usability the last few years and have made some wonderful improvements, eliminating the burden for companies maintaining large IT departments dedicated just to infrastructure. As the public cloud has grown, more and more companies have decided to make the switch and put some or all of their infrastructure into the public cloud. All this being said;
The public cloud, is not for everyone. Companies who want more granular control of their data, infrastructure and security are still better off hosting their own infrastructure and systems.
This is the reality that many companies have discovered recently, especially with the tremendous rise of cyber-crime. It has become far too easy to forget cyber security when moving critical systems and infrastructure to the public cloud and many IT departments simply neglect security policies when these systems get migrated. This is becoming far more prevalent in the industry and it is opening up security holes in many businesses. Consider how many of your own departments have specifically looked at Microsoft Office365 security policies recently? When was the last time you backed up your Office365 or G-Suite data? Did you know that Microsoft and Google are not responsible for your data? Did you know that crypto malware attacks through Microsoft Office365 were up 64% in 2019 and that this is only projected to rise? Many companies make the mistake thinking that since their office productivity software is hosted in the cloud, that Microsoft, Google or Amazon will take care of the security side of things and this is just plainly false. These are large companies but if Microsoft, Amazon or Google hired security technicians to take care of each of their clients, they would go bankrupt within a few weeks. The truth of the matter is that the threats are too great and the attackers are too many. The best that these companies can do is provide a limited set of tools for their clients to manage and maintain and hope for the best.
This is the largest problem that is faced when moving to the public cloud, but it certainly isn’t the only one. Big Tech’s recent habit of snooping on data has shown up more frequently in the past couple of years and this is also a trend that appears to be projected to rise. We have also seen that the cloud is less stable than advertised. Yes, Amazon’s EC2 is a modern marvel in digital computing, but even the mighty EC2 can be hit with outages. When these systems run into problems, multiple large services go down with them. As of this morning, much of Zoom, Facebook and RobinHood were down in the North East as a result of a cloud issue…
There are certainly many things to think about when considering a move to the cloud, but you may want to keep security and data control in-mind when considering the switch. We have helped many companies make the move to the cloud in the past and are happy to continue doing that, but have seen recently that the cloud is not invincible and if the recent SolarWinds hack (which extensively used weaknesses in Microsoft’s Azure cloud platform) prove anything, there is still much that needs to be done in terms of cloud security…
Stay safe out there.