https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Solutions Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
  • MSP 501
    • Back
    • MSP 501 Rankings
    • NextGen 101 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Channel Futures 20: Top Tech Providers
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2023 Editorial Calendar
  • Awards
    • Back
    • 2022 MSP 501
    • Channel Influencers
    • Circle of Excellence
    • DE&I 101
    • Technology Advisor 101 (TA 101)
    • Channel Leaders Lists
  • Events
    • Back
    • 2023 Call for Speakers
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Solutions Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
  • MSP 501
    • Back
    • MSP 501 Rankings
    • NextGen 101 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Channel Futures 20: Top Tech Providers
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2023 Editorial Calendar
  • Awards
    • Back
    • 2022 MSP 501
    • Channel Influencers
    • Circle of Excellence
    • DE&I 101
    • Technology Advisor 101 (TA 101)
    • Channel Leaders Lists
  • Events
    • Back
    • 2023 Call for Speakers
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

MSSP Insider


Shutterstock

Cloud security with padlocks

A Big Miss: Just 21% of Organizations Use Cloud Access Security Brokers

  • Written by Kelly Teal
  • August 17, 2020
A new Cloud Security Alliance report gives MSSPs a road map for helping customers better protect their cloud resources.

Eighty-three percent of organizations say they need to improve their cloud security. At the same time, half of respondents don’t have the staff or expertise to do the job. And, to top it off, few of these organizations use cloud access security brokers, or use them to their fullest potential for overall cloud security.

That combination sets the stage for managed security service providers to step in, especially during COVID-19. Many employees continue to work from home, accessing cloud resources from consumer-grade devices and connectivity. This further pressures any cloud security measures organizations have in place. And even though IT teams know about those pitfalls, few have implemented cloud access security brokers.

Those findings come from the Cloud Security Alliance in a new report commissioned by CASB vendor Proofpoint.

Cloud access security brokers ensure policy enforcement. They sit between the cloud user and the cloud provider to monitor and enforce security as people access resources in the cloud. A CASB can reside on premises or in the cloud.

CASB Disparity

Yet, despite the benefits, only 21% of organizations use cloud access security brokers, according to “Survey Report: Evolution of the CASB.” Fifteen percent continue to evaluate vendors. Thirteen percent remain in the implementation stage and another 13% are giving at least one CASB a pilot test. The majority of organizations the CSA polled, though, still are conducting initial research on CASBs (27%).

That’s the case even though CASBs help combat problems, including shadow IT. These under-the-radar, employee-driven technology deployments threaten cloud security because they rarely adhere to policy. That opens the door for data leaks and bad actors. In fact, last year, Skyhigh Networks found that of the 1,935 different cloud services in use within the average enterprise, the IT department did not know about most of them. CASBs offer important protections, perhaps especially with MSSPs steering process.

Proofpoint's Itir Clarke

Proofpoint’s Itir Clarke

“Organizations worldwide are looking to MSSPs to help them evaluate CASB vendors and solutions, and integrate CASB into their daily security operations — especially now that more and more organizations are remote,” Itir Clarke, senior product marketing manager at Proofpoint, told Channel Futures. “MSSPs are vital partners as organizations work to understand cloud security risks, define their CASB use cases and create a cloud security road map.”

That road map, Clarke added, ensures that organizations prioritize the cloud apps and data repositories to secure first. It also helps determine which cloud users are at risk and how to protect them.

CASBs prove vital to the road map. The thing is, CASBs have gone underused, said Hillary Baron, lead author and research analysts at the Cloud Security Alliance. Three areas where this stands out the most?: compliance, data security and threat protection.

Cloud Security Alliance's Hillary Baron

Cloud Security Alliance’s Hillary Baron

“It’s clear that training and knowledge of how to use the products need to be made a priority if CASBs are to become effective as a service or solution,” Baron said.

Why a CASB?

Of the organizations that do use CASBs, the top five reasons they do so are to:

  • Monitor use behavior (55%)
  • Detect unauthorized access (53%)
  • Classify data (48%)
  • Spot compliance gaps (42%)
  • Pinpoint data location (41%)

Even so, IT teams are missing chances to use CASB functionality for complete cloud security, the Cloud Security Alliance notes. Namely, security professionals are not taking advantage of CASBs’ “device categorization” capabilities, the report said.

“This could be due in part to a great focus on the user behavior,” the authors wrote. Still, “with the growth of user devices and the IoT, device categorization could see more use in the future.”

It seems fair to predict that MSSPs will be instrumental to that effort.

There’s another big possibility MSSPs should consider: Too many IT teams struggle to use CASBs for multicloud visibility across IaaS and PaaS consumption. One reason could go back to inadequate staffing or expertise. Another, the Cloud Security Alliance said, could tie to excess focus on SaaS resources.

“Organizations may be seeking to identify sprawling data in various unsanctioned SaaS services,” the authors wrote.

The ultimate takeaway, of course, is that organizations need MSSP guidance and skill.

The Cloud Security Alliance surveyed 216 IT and security professionals across the Americas, APAC and EMEA over two months to evaluate the use of CASBs for cloud security.

Tags: MSPs MSSP Insider Cloud and Edge Security

Most Recent


  • td synnex ciso
    The Gately Report: TD Synnex CISO on Protecting the World's Largest Distributor
    Apria Healthcare takes years to report massive data breach.
  • ransomware attacks
    Survey: Backups Are Prime Targets for Ransomware Attacks, Most Remain Exposed
    Veeam’s 2023 Ransomware Trends Report shows many pay ransom but don’t always recover.
  • call for speakers
    Channel Futures Leadership Summit Call for Speakers Open
    Speaker applications for “The New Style of Leadership” are open until July 3.
  • Kasten K10 V 6.0
    Veeam Previews Enhanced Kubernetes Protection, Security with Kasten K10 V 6.0
    Veeam showcased forthcoming release at the annual VeeamON conference in Miami.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Security Vulnerability
    Older Fortinet Vulnerabilities Lead to Attack on Local Government Office
  • Threats
    Cybersecurity and Threat Protection: MSSPs, Get Your Advice Here
  • DevSecOps
    ServiceNow, Microsoft Set to Deliver Broad SecOps Integration
  • Dunce Cap Businessman
    Tired of MSSPs ‘Failing,’ Nuspire Debuts Platform to Combat Cyberattacks

Upcoming Events

View all

Channel Partners Europe

June 13, 2023 - June 14, 2023

Channel Futures Leadership Summit

October 30, 2023 - November 2, 2023

Channel Partners Conference & Expo

March 11, 2024 - March 14, 2024

Galleries

View all

The Gately Report: TD Synnex CISO on Protecting the World’s Largest Distributor

May 30, 2023

Survey: Backups Are Prime Targets for Ransomware Attacks, Most Remain Exposed

May 26, 2023

Faces of the Partner: 6 New Tech Advisors Entering the Channel

May 26, 2023

Industry Perspectives

View all

Dell Technologies World: Dell Apex Expanded Across On-Premises, Cloud and Edge

May 22, 2023

Identity Is Increasingly Valuable – and Targeted

May 18, 2023

Gaining a Competitive Advantage through AV Managed Services

May 10, 2023

Webinars

View all

From Problem to Profit: Mastering the Science of Selling Using Business Outcomes

May 9, 2023

Meet the 2023 Channel Futures Channel Influencers

April 13, 2023

DE&I Dialogue: How the Right DE&I Initiatives Can Propel Your Business

April 5, 2023

White Papers

View all

6 UCaaS Reseller Challenges and How Real World Businesses Solved Them

February 1, 2023

Frost Radar: North American UCaaS Market, 2022

February 1, 2023

The Complete Guide to White-Label UCaaS for Reseller Success

February 1, 2023

Channel Futures TV

View all

Coffee with Craig and James Episode No. 123: MartinWolf M&A Advisors, CP Expo Preview

UScellular Takes On Rivals with Partner Program Simplicity

April 21, 2023

OpenText Simplifying Deal Registration, Doubling Down on MDF

April 21, 2023

Everything-as-a-Service: CloudBlue Touts Critical Customer Transition

April 18, 2023

Twitter

ChannelFutures

Our latest #GatelyReport includes a Q&A with @TDSYNNEX CISO Dan Lasher, #cyberattack in Augusta, Georgia, Apria Hea… twitter.com/i/web/status/1…

May 30, 2023
ChannelFutures

Who has been a diversity, equity & inclusion role model in your career? Take a moment to honor their initiatives in… twitter.com/i/web/status/1…

May 29, 2023
ChannelFutures

Paul Green @msp_voice will help MSPs gain more #customers and #sales at @ChannelEurop June 13.… twitter.com/i/web/status/1…

May 26, 2023
ChannelFutures

.@coalesceIO unveils revamped partner program. #datatransformation dlvr.it/SphJm4 https://t.co/s7fYAVmFGD

May 26, 2023
ChannelFutures

.@Veeam #Ransomeware survey: backups are not adequately protected, 85% suffered at least 1 attack in past year… twitter.com/i/web/status/1…

May 26, 2023
ChannelFutures

.@MSPSummit call for speakers is open now through July 3. The theme for this year’s summit is “The New Style of Lea… twitter.com/i/web/status/1…

May 26, 2023
ChannelFutures

Channel Futures interviewed six individuals who started an agency in the last two years. dlvr.it/SpgV6l https://t.co/JXKhJcw31A

May 26, 2023
ChannelFutures

Channel Futures interviewed six individuals who started an agency in the last two years. dlvr.it/SpgTQg https://t.co/7eIp0XgwQ2

May 26, 2023

MSP 501

The industry's largest and most comprehensive partner awards program.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2023 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X