https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Master Agents
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity & Inclusion
  • MSSP Insider
  • MSP 501
    • Back
    • Apply Now
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • Videos
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
    • Channel Educational Series
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
    • Channel Convergence
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Content Resources
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • Excellence in Digital Services
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Master Agents
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity & Inclusion
  • MSSP Insider
  • MSP 501
    • Back
    • Apply Now
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • Videos
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
    • Channel Educational Series
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
    • Channel Convergence
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Content Resources
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • Excellence in Digital Services
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Best Practices


Shutterstock

Cloud computing

Microsoft Inspire: 3 Azure Security Takeaways for Partners

Microsoft is up front about the limits of its Azure security responsibility. Partners need customers to get that message.
Armor's Dan Mannion

Dan Mannion

By Dan Mannion, VP, partners & alliances, Armor

I recently had the pleasure of attending my 12th Microsoft Inspire conference, mingling with more than 17,000 partners from around the world and several thousand Microsoft leaders. Notably, Microsoft CEO Satya Nadella outlined a $4.5+ trillion-dollar opportunity for Microsoft partners to take advantage of its innovations in cloud computing, natural UIs and IoT, which are key components of the digital transformation underway for the vast majority of organizations.

For security-minded folks like me, the true highlight, however, was Brad Smith’s keynote. For the first time ever, one of Microsoft’s most senior execs dedicated 20-minutes of prime stage time to emphasizing cybersecurity and the growing threat to organizations and individuals alike. Smith also focused on the responsibility we have to secure customer data in the cloud.

I’d argue that Microsoft, more than any company, has a unique view of the increasing challenges we face from ransomware like WannaCry, Petya, NotPetya; new regulations such as the EU’s GDPR and South Africa’s POPI; and a severe cybersecurity talent shortage. He called on the industry to share the responsibility to keep customer data safe, so I thought I’d take a moment and highlight what that means for partners helping  customers moving to Azure.

The Azure Shared Responsibility Model states very simply that Microsoft will secure the cloud – physical data centers, networks – and control access by Microsoft employees to ensure customers their data will not be compromised from those vectors. However, once a customer puts their application(s) in the cloud, the customer is responsible for securing the virtual machines, application servers, database servers and all the network ports used to access cloud applications.

Generic Channel Partners report icon

Shadow Influencers: Do You See Them Now? Jay McBain, channel influencer and principle Forrester analyst, says we may be seeing the most disruptive market yet. Why? Line-of-business executives leading technology decisions — and looking to a new set of hyperspecialized partners. Are you positioned to thrive? Find out!

Unfortunately, this concept is misunderstood by most customers. In fact, in one IDC study surveying IT leaders about who’s responsible for the security of their applications in the cloud, 85 percent said the cloud provider.

Wrong. The correct answer is the person in the mirror. When we help customers understand this responsibility, it typically raises questions in three key areas:

  • Security in Azure is different from your own data center. When you move an application to Azure, you quickly realize the customer IT team doesn’t have the same level of access, control and visibility that they did in their own data center. To Microsoft’s credit, they have invested heavily to provide more visibility through the Azure Security Center dashboard, but even though they provide more data, you still need super smart, 24×7 cybersecurity professionals to correlate that data with other sources to get an accurate picture of what threat actors are attempting to do to your environment. And, these attempts are relentless.
  • All Azure IP addresses are published. Every threat actor on the planet can find the IP addresses of Azure, and AWS, for that matter. If you’re a threat actor, and you understand that most customers aren’t putting appropriate security controls in place in the cloud, then all you have to do is scan those IP ranges and find common/known vulnerabilities to exploit. We’ve tested this by launching unprotected IaaS environments in Azure and AWS. Within 2 minutes, they are being scanned for holes, and in a matter of 10-15 mins, threat actors have injected malware onto the VMs and taken control.
  • Hybrid security is difficult.  While most CIOs are ready to shut down their data centers and get out of the business of server and network maintenance, the reality is it will take years to migrate and re-architect applications to the public cloud. That leaves the CIO and her security team with a hybrid computing experience, and an even more challenging hybrid security experience.

As CIO, do you make it one person’s full-time job to secure applications in Azure? Do you cross-train your entire team? Can you re-use your response and remediation plan for Azure, or do you need to design a new one? If your credentials in the cloud get compromised, does that raise your risk of compromise in your own data center? What new approaches will be needed for compliance audits, and have any audit risks been introduced?

We’ve heard from top Microsoft executives loud and clear that the threat landscape and compliance regulations are getting more difficult to keep up with. Partners have a shared responsibility to help customers be secure. While the challenge is real, being prepared starts by doing your homework to understand exactly what your role in security is and applying resources accordingly. With appropriate planning and an organizational commitment to make security a priority, CIOs can realize the full benefits of the cloud so they can focus on productivity and performance.

Dan Mannion is vice president, partners & alliances at Armor, the First Totally Secure Cloud Company that keeps sensitive, regulated data safe and compliant in the cloud. For more information, visit www.armor.com.

Tags: Agents Best Practices Cloud Data Centers IoT Regulation & Compliance Security

Related


  • SASE network edge
    Aruba Fully Integrates Silver Peak SD-WAN, Unveils SASE Strategy
    HPE bought Silver Peak last year and brought it into the Aruba business unit.
  • Workforce reinvention
    Five9 Shares Insights on Implementing a DE&I Strategy
    A culture of awareness and empathy starts with listening and sharing.
  • Convergence
    New, Changing Partner Programs: HPE, Zoom, Fortinet, Microsoft, More
    Telecom and IT vendors are courting partners to sell their solutions.
  • Survey says
    Cloud Communications Market Rocked by Microsoft, COVID-19 in 2020
    The perceived competitiveness of Slack and Google slid year over year.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • TBI Adds Rival Intelisys Alum, Tech Data, 8x8 Vets
  • Convergence in the Channel: Is It Happening, and What Does This Mean for MSPs?
  • SASE Takes: Service Providers Mull SD-WAN Complexity as Comcast, Versa Enhance AI Capabilities
  • T-Mobile 5G Network to Augment Lumen's Edge Computing Platform

Galleries

View all

M&A Roundup: Tech Data, RingCentral, Telarus, Datto, More

April 20, 2021

Industry Perspectives

View all

Annual MSP Benchmark Survey Reveals Remote Work Still a Top Challenge

April 20, 2021

Why Digital Transformation Is the ‘Invisible Hand’ of Our Time

April 19, 2021

SD-WAN Supports More Purposeful Shift to Cloud

April 16, 2021

Webinars

View all

What to Look For: 2021 Threat Report

April 22, 2021

Health Care and SD-WAN: A Seller’s Guide

April 27, 2021

How MSPs Can Leverage SOCaaS to Improve Security & Grow Revenue

May 4, 2021

White Papers

View all

Hacker Personas: A Deeper Look into Cybercrime

April 20, 2021

Carbonite Data Protection and Cyber Resilience

April 15, 2021

Top Tips: How Resellers Can Leverage Rackspace to Enhance Customer’s Cyber Security Protection with Microsoft 365 Security

March 30, 2021

Upcoming Events

View all

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

MSP Summit

November 1, 2021 - November 2, 2021

Channel Evolution Europe

November 30, 2021 - December 1, 2021

Videos and Fastchats

View all

ACC’s Nancy Ridge on Gender Diversity in the Channel

5 Reasons Diversity, Equity and Inclusion Is Important

April 14, 2021

Five9 Shares Insights on Implementing a DE&I Strategy

April 13, 2021

FASTCHAT: How Fortinet Reduces Complexity Through Networking, Security

March 31, 2021

Twitter

ChannelFutures

.@AppSmartcom touted its platform at its #AppSmartUnleash event. dlvr.it/Ry5SSF https://t.co/RQdXFffe9N

April 20, 2021
ChannelFutures

.@digicert Security Summit highlights growth, innovation amid #COVID19. dlvr.it/Ry5SNP https://t.co/g1yFRHHjKa

April 20, 2021
ChannelFutures

Congrats to @CatSolazzo on her new #marketing gig at @Tech_Data. The channel knows her well from #IBM.… twitter.com/i/web/status/1…

April 20, 2021
ChannelFutures

.@OtavaLLC unveils #partnerprogram enhancements. #cloud dlvr.it/Ry4g4t https://t.co/D9dUuezdn9

April 20, 2021
ChannelFutures

#MSP business is still strong & growing @KaseyaCorp 2021 benchmark survey #digitaltransformation #remotework… twitter.com/i/web/status/1…

April 20, 2021
ChannelFutures

Our M&A roundup includes massive @Synnex-@Tech_Data merger, @McAfee's enterprise unit sale and @Telarus' acquisitio… twitter.com/i/web/status/1…

April 20, 2021
ChannelFutures

Join the Allies of the Channel Council, Xposure Inclusion & Diversity Council, and @AllianceofCW on Thursday at 2 p… twitter.com/i/web/status/1…

April 20, 2021
ChannelFutures

.@salesforce revives Data Recovery Service it retired last year as @AvePoint launches #Salesforce #CloudBackup.… twitter.com/i/web/status/1…

April 20, 2021

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X