The rate of intentional and accidental security risks is rising in sync with the growing numbers of people and organisations heading to the cloud. While data breaches are common, the highest percentage of errors still come from cloud misconfigurations and human error.
In fact, according to Gartner, 99% of cloud failures are due to mistakes like misconfigurations. A recent report by Illumio found that in the last year, 47% of all data breaches originated in the cloud, and more than 6 out of 10 respondents believe their cloud security is not only lacking, but it poses a severe risk to their business operations. Again, according to Gartner, using a CSPM tool can reduce cloud-based security incidents due to misconfigurations by 80%.
Arguably the biggest risk that comes with the cloud is that of identity. In a world of hybrid and multi-cloud, traditional network security no longer offers the same advantages or protection. Increased cloud adoption has resulted in a deluge of new human, and even non-human identities that threat actors can compromise. Identity is the new perimeter, and it has become a critical attack surface for bad actors.
CSPMs are important because modern enterprises need to manage, operate and protect complex perimeter-less multi-cloud IT infrastructures where misconfigurations, poor visibility, compliance challenges and cybersecurity vulnerabilities are common.