Welcome!

News Feed Item

9 Out of 10 Cloud Services Are Putting European Businesses at Risk

Skyhigh Networks, the Cloud Visibility and Enablement company, today released its first European ‘Cloud Adoption and Risk Report’, to coincide with the company’s expansion into the region. The report analyses usage data from more than one million users across more than 40 companies spanning the financial services, healthcare, high technology, manufacturing, media, and professional service industries to quantify the use of cloud services and the security risk that they pose to enterprises.

A key finding was that enterprises used an average of 588 cloud services. Even if one were to ignore the EU data residency requirements, only 9% of the cloud services in use provide enterprise-grade security capabilities, while the remaining 91% (more than 9 out of 10) pose medium to high security risks to organisations. From a data privacy and data residency perspective, only 1% of the cloud services in use both offer enterprise-grade security capabilities and store data in Europe’s jurisdictional boundaries, and the remaining 99%, either store data in countries where data privacy laws are less stringent or don’t have enterprise-grade security capabilities, or both.

Shadow IT Can Be Risky Business

Much of the cloud adoption within European organisations occurs under the radar of the CIO or CISO – leading to a situation where Shadow IT is widespread and uncontrolled. The ease with which employees can now consume cloud applications means that there is often little consideration for the security implications or impact on wider business policies. When CIOs examine the use of cloud services across the organisation, they generally find Shadow IT is 10 times more prevalent than they initially assumed.

Key findings from the report include:

  • Only 5% of cloud services in Europe are ISO 27001 certified, posing compliance issues for those organisations unaware that their employees are using uncertified services.
  • 25 of the top 30 cloud services in the collaboration, content sharing, and file sharing categories were based in countries (United States, Russia, China) where the privacy laws are far less stringent compared to Europe.
  • 49 different services in use are tracking the browsing behaviour of employees on the Internet. This exposes organisations to the increasingly prevalent watering hole attack.

“Cloud services certainly enable agile, flexible, and efficient businesses, and employees should be encouraged to use services that best suit their working style and enhance their productivity,” said Rajiv Gupta, CEO Skyhigh Networks. “However, it is evident from this study that too many employees are still unaware of the risks associated with some cloud services, and could even be jeopardising the overall security position of their organisation. Of the services that we analysed, 72% stored data in the US – which could have legal and compliance implications for certain organisations in Europe. The bottom line is that businesses need to get smarter about the cloud. IT needs to develop a greater understanding of the cloud services in use and the risk they present, and play a leadership role in educating users and guiding the organisation to securely embrace the cloud.”

Skyhigh Networks in Europe

Charlie Howe, EMEA director of Skyhigh Networks, is leading the company’s expansion into Europe. He aims to help companies establish a deeper visibility into cloud usage, analyse usage to determine risks, and enable the secure and cost-effective adoption of cloud applications.

Skyhigh Networks’ technology facilitates this by supporting the entire cloud adoption lifecycle, providing unparalleled visibility, usage analytics, and policy enforcement. Skyhigh Discover enables organisations to gain a comprehensive view into their cloud usage and leverage objective risk ratings to identify services that are enterprise-ready. These risk ratings are part of Skyhigh’s CloudTrust™ program, which was developed in partnership with the Cloud Security Alliance (CSA). Skyhigh Analyse identifies usage patterns to enable new cloud services, better manage subscriptions, and highlight anomalous user activity. Skyhigh Secure consistently and transparently enforces security policies such as encryption, data loss prevention, and access control on corporate data stored in the cloud.

“Europe is facing something of a crossroads with regard to cloud adoption and security,” said Howe. “The discrepancy between the perceived and actual number and risks of services in use at each organisation is worrying to say the least. CIOs need to get a better grip on this if they are to avoid the huge reputational and financial repercussions of poor data security. While blanket bans on cloud services were once the only option, CIOs now have the tools and services that will enable them to empower employees to use the cloud services that grow the business while ensuring compliance with internal and external data privacy, security, and governance policies.”

The full report, including top 10 ratings of the most popular cloud applications in each type of service, is available here: http://www.skyhighnetworks.com/wp-content/uploads/2014/04/Skyhigh-Cloud-Adoption-Risk-Report-EU-0414.pdf

ABOUT THE CLOUD ADOPTION AND RISK REPORT

The Cloud Adoption and Risk Report is based on data from more than one million users across more than 40 companies spanning financial services, high technology, oil and gas, manufacturing, retail and utilities industries. The top 10 services are based on the number of users of the service. The risk of each service is based on Skyhigh CloudTrust™, which assigns a 1-to-10 risk rating based on detailed, objective and weighted assessment of more than 30 attributes across data risk, user risk, device risk, service risk, business risk, and legal risk.

ABOUT SKYHIGH NETWORKS

Skyhigh Networks, the Cloud Visibility and Enablement Company, allows companies to embrace cloud services with appropriate levels of security, compliance, and governance while lowering overall risk and cost. With customers in financial services, professional services, energy, healthcare, high technology, media and entertainment, manufacturing, and legal verticals, the company was a finalist for the RSA Conference Most Innovative Company award and was recently named a “Cool Vendor” by Gartner, Inc. Headquartered in Cupertino, Calif., Skyhigh Networks is led by an experienced team and is venture-backed by Greylock Partners and Sequoia Capital. For more information, visit us at http://www.skyhighnetworks.com or follow us on Twitter @skyhighnetworks.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Your homes and cars can be automated and self-serviced. Why can't your storage? From simply asking questions to analyze and troubleshoot your infrastructure, to provisioning storage with snapshots, recovery and replication, your wildest sci-fi dream has come true. In his session at @DevOpsSummit at 20th Cloud Expo, Dan Florea, Director of Product Management at Tintri, provided a ChatOps demo where you can talk to your storage and manage it from anywhere, through Slack and similar services with...
The financial services market is one of the most data-driven industries in the world, yet it’s bogged down by legacy CPU technologies that simply can’t keep up with the task of querying and visualizing billions of records. In his session at 20th Cloud Expo, Karthik Lalithraj, a Principal Solutions Architect at Kinetica, discussed how the advent of advanced in-database analytics on the GPU makes it possible to run sophisticated data science workloads on the same database that is housing the rich...
DevOps at Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to w...
Any startup has to have a clear go –to-market strategy from the beginning. Similarly, any data science project has to have a go to production strategy from its first days, so it could go beyond proof-of-concept. Machine learning and artificial intelligence in production would result in hundreds of training pipelines and machine learning models that are continuously revised by teams of data scientists and seamlessly connected with web applications for tenants and users.
All organizations that did not originate this moment have a pre-existing culture as well as legacy technology and processes that can be more or less amenable to DevOps implementation. That organizational culture is influenced by the personalities and management styles of Executive Management, the wider culture in which the organization is situated, and the personalities of key team members at all levels of the organization. This culture and entrenched interests usually throw a wrench in the work...
"We want to show that our solution is far less expensive with a much better total cost of ownership so we announced several key features. One is called geo-distributed erasure coding, another is support for KVM and we introduced a new capability called Multi-Part," explained Tim Desai, Senior Product Marketing Manager at Hitachi Data Systems, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
There is a huge demand for responsive, real-time mobile and web experiences, but current architectural patterns do not easily accommodate applications that respond to events in real time. Common solutions using message queues or HTTP long-polling quickly lead to resiliency, scalability and development velocity challenges. In his session at 21st Cloud Expo, Ryland Degnan, a Senior Software Engineer on the Netflix Edge Platform team, will discuss how by leveraging a reactive stream-based protocol,...
IoT is at the core or many Digital Transformation initiatives with the goal of re-inventing a company's business model. We all agree that collecting relevant IoT data will result in massive amounts of data needing to be stored. However, with the rapid development of IoT devices and ongoing business model transformation, we are not able to predict the volume and growth of IoT data. And with the lack of IoT history, traditional methods of IT and infrastructure planning based on the past do not app...
SYS-CON Events announced today that SkyScale will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. SkyScale is a world-class provider of cloud-based, ultra-fast multi-GPU hardware platforms for lease to customers desiring the fastest performance available as a service anywhere in the world. SkyScale builds, configures, and manages dedicated systems strategically located in maximum-securit...
DX World EXPO, LLC., a Lighthouse Point, Florida-based startup trade show producer and the creator of "DXWorldEXPO® - Digital Transformation Conference & Expo" has announced its executive management team. The team is headed by Levent Selamoglu, who has been named CEO. "Now is the time for a truly global DX event, to bring together the leading minds from the technology world in a conversation about Digital Transformation," he said in making the announcement.
With tough new regulations coming to Europe on data privacy in May 2018, Calligo will explain why in reality the effect is global and transforms how you consider critical data. EU GDPR fundamentally rewrites the rules for cloud, Big Data and IoT. In his session at 21st Cloud Expo, Adam Ryan, Vice President and General Manager EMEA at Calligo, will examine the regulations and provide insight on how it affects technology, challenges the established rules and will usher in new levels of diligence...
As businesses adopt functionalities in cloud computing, it’s imperative that IT operations consistently ensure cloud systems work correctly – all of the time, and to their best capabilities. In his session at @BigDataExpo, Bernd Harzog, CEO and founder of OpsDataStore, presented an industry answer to the common question, “Are you running IT operations as efficiently and as cost effectively as you need to?” He then expounded on the industry issues he frequently came up against as an analyst, and ...
In the enterprise today, connected IoT devices are everywhere – both inside and outside corporate environments. The need to identify, manage, control and secure a quickly growing web of connections and outside devices is making the already challenging task of security even more important, and onerous. In his session at @ThingsExpo, Rich Boyer, CISO and Chief Architect for Security at NTT i3, discussed new ways of thinking and the approaches needed to address the emerging challenges of security i...
Internet of @ThingsExpo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devic...
"The Striim platform is a full end-to-end streaming integration and analytics platform that is middleware that covers a lot of different use cases," explained Steve Wilkes, Founder and CTO at Striim, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.