https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2021 MSP 501 Application
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2021 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

MSSP Insider


Shutterstock

Cloud security with padlocks

A Big Miss: Just 21% of Organizations Use Cloud Access Security Brokers

  • Written by Kelly Teal
  • August 17, 2020
A new Cloud Security Alliance report gives MSSPs a road map for helping customers better protect their cloud resources.

Eighty-three percent of organizations say they need to improve their cloud security. At the same time, half of respondents don’t have the staff or expertise to do the job. And, to top it off, few of these organizations use cloud access security brokers, or use them to their fullest potential for overall cloud security.

That combination sets the stage for managed security service providers to step in, especially during COVID-19. Many employees continue to work from home, accessing cloud resources from consumer-grade devices and connectivity. This further pressures any cloud security measures organizations have in place. And even though IT teams know about those pitfalls, few have implemented cloud access security brokers.

Those findings come from the Cloud Security Alliance in a new report commissioned by CASB vendor Proofpoint.

Cloud access security brokers ensure policy enforcement. They sit between the cloud user and the cloud provider to monitor and enforce security as people access resources in the cloud. A CASB can reside on premises or in the cloud.

CASB Disparity

Yet, despite the benefits, only 21% of organizations use cloud access security brokers, according to “Survey Report: Evolution of the CASB.” Fifteen percent continue to evaluate vendors. Thirteen percent remain in the implementation stage and another 13% are giving at least one CASB a pilot test. The majority of organizations the CSA polled, though, still are conducting initial research on CASBs (27%).

That’s the case even though CASBs help combat problems, including shadow IT. These under-the-radar, employee-driven technology deployments threaten cloud security because they rarely adhere to policy. That opens the door for data leaks and bad actors. In fact, last year, Skyhigh Networks found that of the 1,935 different cloud services in use within the average enterprise, the IT department did not know about most of them. CASBs offer important protections, perhaps especially with MSSPs steering process.

Proofpoint's Itir Clarke

Proofpoint’s Itir Clarke

“Organizations worldwide are looking to MSSPs to help them evaluate CASB vendors and solutions, and integrate CASB into their daily security operations — especially now that more and more organizations are remote,” Itir Clarke, senior product marketing manager at Proofpoint, told Channel Futures. “MSSPs are vital partners as organizations work to understand cloud security risks, define their CASB use cases and create a cloud security road map.”

That road map, Clarke added, ensures that organizations prioritize the cloud apps and data repositories to secure first. It also helps determine which cloud users are at risk and how to protect them.

CASBs prove vital to the road map. The thing is, CASBs have gone underused, said Hillary Baron, lead author and research analysts at the Cloud Security Alliance. Three areas where this stands out the most?: compliance, data security and threat protection.

Cloud Security Alliance's Hillary Baron

Cloud Security Alliance’s Hillary Baron

“It’s clear that training and knowledge of how to use the products need to be made a priority if CASBs are to become effective as a service or solution,” Baron said.

Why a CASB?

Of the organizations that do use CASBs, the top five reasons they do so are to:

  • Monitor use behavior (55%)
  • Detect unauthorized access (53%)
  • Classify data (48%)
  • Spot compliance gaps (42%)
  • Pinpoint data location (41%)

Even so, IT teams are missing chances to use CASB functionality for complete cloud security, the Cloud Security Alliance notes. Namely, security professionals are not taking advantage of CASBs’ “device categorization” capabilities, the report said.

“This could be due in part to a great focus on the user behavior,” the authors wrote. Still, “with the growth of user devices and the IoT, device categorization could see more use in the future.”

It seems fair to predict that MSSPs will be instrumental to that effort.

There’s another big possibility MSSPs should consider: Too many IT teams struggle to use CASBs for multicloud visibility across IaaS and PaaS consumption. One reason could go back to inadequate staffing or expertise. Another, the Cloud Security Alliance said, could tie to excess focus on SaaS resources.

“Organizations may be seeking to identify sprawling data in various unsanctioned SaaS services,” the authors wrote.

The ultimate takeaway, of course, is that organizations need MSSP guidance and skill.

The Cloud Security Alliance surveyed 216 IT and security professionals across the Americas, APAC and EMEA over two months to evaluate the use of CASBs for cloud security.

Tags: MSPs Cloud and Edge MSSP Insider

Related


  • Zero Trust Security
    3 Strategies for Selling Zero Trust in the Channel
    Switching to a zero-trust security approach reduces exposure to potential data breaches and helps drive down fixed costs.
  • Malicious hacker group
    BlackBerry Research: MSSPs Increasingly Targeted by Hacker-for-Hire Groups
    The cybercrime industry has adapted to new digital habits.
  • Threats
    Threat Protection Vendors: Why MSSPs Have to Ramp Up Efforts Right Now
    “Look no further than the headlines,” says one vendor. “You owe it to your customers,” says another.
  • Spam
    Kaspersky Research: Russia Now No. 1 Global Source of Spam
    The most frequent targets of phishing attacks were online stores.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Cybercriminals Now Targeting Unemployment Benefit Claims
  • How Ransomware Is Accelerating in the COVID-19 Era
  • Cowbell Cyber Debuts Partner Program to Manage Cyber Risk
  • Blame IT Pros for Data Privacy Failures?

Galleries

View all

From The Second City: How to Use Improv as a Business Tool

March 3, 2021

Industry Perspectives

View all

Multi-Cloud: Strategy or Inevitable Outcome? (or both?)

March 3, 2021

Backup Vulnerability: 4 Targets Hackers Might Utilize to Infiltrate Your Backup Solution

March 2, 2021

The “Roaring 20s” Are Coming

February 25, 2021

Webinars

View all

A Partner’s Perspective on Channel Success in 2021

March 23, 2021

XDR and Why it Matters to MSPs

March 24, 2021

Top Security Trends Impacting Technology Security Providers In 2021

March 25, 2021

White Papers

View all

Why Fortinet for my MSSP?

March 2, 2021

Small and Mid-Size Business Security: 4 Steps to Success

March 2, 2021

How SMBs Can Secure Endpoints and Remote Workers for the Long Haul

March 2, 2021

Upcoming Events

View all

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

Kelly Leonard of @SecondCity talks to us about how improv can be used as a business tool to improve the company cul… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

Another amazing day at #CPVirtual. Here's what you missed and what's on tap for Day 3. @Channel_Expo… twitter.com/i/web/status/1…

March 4, 2021
ChannelFutures

Learn how @VMWare can help you build and deliver a #multicloud strategy. #hybridcloud #cloud #AWS… twitter.com/i/web/status/1…

March 3, 2021
ChannelFutures

Learn about the merging of our media websites; plus, a new #MSP Summit this fall. @Channel_Expo… twitter.com/i/web/status/1…

March 3, 2021
ChannelFutures

.@KnowBe4 acquires @MediaPROInc to beef up #cybersecurity training. dlvr.it/RtvdpB https://t.co/FzseCn4K6A

March 3, 2021
ChannelFutures

#COVID19 is ramping up #socialengineering – time for MSSPs to step in. @Electric_AI dlvr.it/RtvRQc https://t.co/ebTJNJcOxz

March 3, 2021
ChannelFutures

.@pluribusnet launches expanded, simplified partner program. #SDN dlvr.it/RtvGtQ https://t.co/bRDqYLEhXJ

March 3, 2021
ChannelFutures

#SupplyChain agility is changing global distribution patterns and #ictservices, says @NeecoICT.… twitter.com/i/web/status/1…

March 3, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X