Research Report

2021 AWS Cloud Security Report

Fueled by more sophisticated adversaries, modern threats are more pervasive and doing more damage, faster. Uncover how AWS user organizations are responding to new security threats in the cloud, and what tools and best practices cybersecurity leaders are prioritizing in their move to the cloud with the new Cybersecurity Insiders 2021 AWS Cloud Security Report, sponsored by CloudPassage, a Fidelis Cybersecurity company. This report is based on a comprehensive survey of more than 300 cybersecurity professionals who are actively working to keep their cloud environments secure.

This year’s survey shows significant changes over last year in how organizations are responding to cloud security challenges and threats. Key survey findings include:

  • 95% of cybersecurity professionals confirm they are extremely to moderately concerned about public cloud security.
  • #1 concern remains Misconfiguration of the cloud platform (71%). Exfiltration of sensitive data came in second (59%). Insecure APIs (54%) rounded out the top 3 concerns.
  • 58% use periodic vulnerability and compliance reports as the primary method of communication with system owners about security and compliance issues needing remediation. This is followed by automatically opened tickets (47%) using tools such as Jira, ServiceNow, etc.
  • >40% of organizations embrace hybrid cloud (44%) and multi-cloud deployments (43%) for planned redundancy because of commitments to legacy applications in traditional data centers. Single cloud deployments (11%) continue to diminish in importance.
  • 90% of organizations use more than two cloud providers.
  • 66% of organizations prioritize cost-effectiveness as a leading criterion when selecting a cloud security provider, followed by scalability (52%), ease of deployment (51%), and tools that can be deployed with automation (48%).

Download the report to see detailed statistics, current strategies, and best practices you can apply to your security strategy for public and multi-cloud environments.