Blog

SANS: A New Take on Cloud Shared Responsibility

Help Your Cloud SecOps Mature and Grow

Dale Norris

February 18, 2021

There is a fairly common perception that organizations have a handle on their obligations under the shared responsibility model of cloud security. However, cloud security is complex and constantly evolving, and there is more nuance to shared responsibility than you may realize.

To better understand who is responsible for securing what is in the cloud—as well as the security controls and services best suited to help cloud security operations mature and grow—check out the latest report from the SANS Institute.

Read the SANS report: A New Take on Cloud Shared Responsibility

This SANS report reveals that, in the beginning, cloud service providers didn't write shared responsibility models for cloud security teams. They were business proposals intended to make organizations more comfortable with putting assets into the cloud. The tactic worked, and DevOps began driving deployment and change at a pace that can make tracking assets and building consistent monitoring use cases challenging.

Today, shared responsibility models no longer focus on development and DevOps. Instead, they point security teams in the right direction to protect cloud environments.

In the new report, you'll learn about new approaches to securing the cloud, as well as the next steps to take for improving visibility. You will also gain valuable insight into how cloud-focused security teams have traditionally used host-based agents, intrusion detection systems (IDS) and netflow, and logging and event monitoring tools for cloud security. Additionally, you can dig into the pluses and minuses of each product category.

SANS also dives deeper into key features to look for in network detection and response (NDR) solutions, including asset discovery and classification, network and application monitoring, and policies and automated actions.

One key area the report centers on is the most effective means of ensuring that you can securely leverage the scale and elasticity of cloud environments without introducing friction and blind spots. Major takeaways include:

Look for tool alignment from on-premises data centers to the cloud and give more weight to cloud-friendly and compatible tools/services that can operate in both multi-cloud and hybrid cloud scenarios.
Choose tools that integrate with cloud provider APIs and those of other complementary services in a security operations capacity.
Build cloud-centric detection and response workflows that leverage automation where appropriate to improve analyst effectiveness and efficiency.

To learn more about how and why you may need to take a new approach to shared responsibility in the cloud, download a complimentary report today.

Discover more

CybersecurityCompanyCommunity

Explore related articles

Cloud-Native NDR: Shared Responsibility's Missing Link

October 7, 2020

(ISC)² has launched a three-part webinar series on how cloud-native network detection and response helps enterprises uphold their end of the shared responsibility model, while offering the same scalability that other cloud services offer.

CybersecurityRevealX

Read article

SANS 2020 Cloud Security Report | ExtraHop

January 29, 2021

Gain valuable insight into the tooling and migration trends to watch today and in the future with the newest report from the SANS Institute.

Industry TrendsCybersecurityCommunity

Read article

ExtraHop Named a Representative Vendor in the 2020 Gartner Market Guide for NDR

June 17, 2020

Get the top takeaways from the 2020 Gartner Market Guide for Network Detection and Response and see ExtraHop as a Representative Vendor.

CybersecurityIndustry TrendsNTANDR

Read article

Experience RevealX NDR for Yourself

Schedule a demo

RevealX platform

Deployment

Integrations

Experience NDR

Capabilities

FAQs

Intrusion Detection System

Forensics

Experience NPM

Capabilities

FAQs

Forensics

Solutions

Ransomware Attacks

Advanced Threat Hunting

Threat Detection and Response

Network Forensics and Investigation

Security Hygiene

Cloud Workload Security

Operational Resilience

Troubleshooting and Resolution

Cloud Migration

Cloud Workload Monitoring

Network Forensics

Zero Trust

Multicloud & Hybrid Cloud Security

XDR Strategy

SOC Modernization

Digital Transformation

Financial Services

Education

Public Sector

Federal Civilian Agencies

Defense and Intelligence

State and Local Government

Why ExtraHop

Customer Stories

News

Careers

Technology Partners

Channel Partners

Managed Service Providers

Service Credits

Resident Experts

Deployments

Customer Community

Technical Support

Education Services

C-Level

Security Threats

Company

Products

How-To

NDR

NPM

Ransomware

Zero Trust

Reports

Demos & Videos

Customer Stories

Webinars

Papers & E-books

Data Sheets

Experience NDR

Capabilities

FAQs

Intrusion Detection System

Forensics

Experience NPM

Capabilities

FAQs

Forensics

Ransomware Attacks

Advanced Threat Hunting

Threat Detection and Response

Network Forensics and Investigation

Security Hygiene

Cloud Workload Security

Operational Resilience

Troubleshooting and Resolution