Trends in cloud-native security, technology, and automation.
As security and devops continue to converge, cloud security controls are being consolidated. Project teams are evolving from a siloed approach to a unified strategy to securing cloud-native applications and platforms.
To understand the state of cloud security in 2021, ESG surveyed 383 IT and cybersecurity professionals at organizations in North America (US and Canada) personally responsible for evaluating or purchasing cloud security technology products and services.
Among other findings, ESG discovered:
- Program maturity gaps result in inconsistency, misconfigurations, and visibility gaps.
- A diverse threat model is driving the need for an integrated defense-in-depth strategy.
- The shift from a bottoms-up to a top-down approach is increasing the role of IT ops.
- The requirement for breadth of coverage and depth of functionality is leading the consolidation of point tools into integrated platform modules.
Access This Report
of respondents believe their cybersecurity program needs to evolve to secure their cloud native applications and use of public cloud infrastructure.
say automating the introduction of controls and processes via integration with the software development lifecycle and CI/CD tools is a top priority.
report that the lack of access to the physical network and the dynamic nature of cloudnative applications and elastic infrastructure create visibility blind spots, making security monitoring challenging.
report having not experienced an attack on their cloud-native apps and infrastructure over the last 12 months.