Research Report

State of Cloud Security in the Enterprise

This survey shed light on several enterprise security elements.

State of Cloud Security in the Enterprise
State of Cloud Security in the Enterprise
Instant Free Access
Instant Complimentary Access

Gartner does not endorse any vendor, product or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Oops! Something went wrong while submitting the form.

Key takeaways include:

  • Ops, IT, and security teams use a myriad of tools to manage their cloud and/or SaaS footprints, ranging from provider and third-party tools to custom-developed tools to meet unique needs or processes.
  • Cloud services, infrastructure, and SaaS applications are becoming too numerous (and perhaps voluminous) for security teams to manually monitor. Most of this survey’s respondents use cloud security posture management / SaaS security posture management (CSPM/SSPM) technologies to complement their security capabilities.
  • Continuously monitoring cloud environments for real-time threats and policy configuration violations were the top two benefits from CSPM and SSPM solutions, highlighting the importance of visibility into cloud operations.
  • The tools organizations use to monitor and secure their cloud environments, for both CSPM and SSPM purposes, range from cloud-native provider tools to customdeveloped tools, highlighting a need for security teams to derive and action on their own telemetry.
  • Half of the respondents have an in-house SOC, and approximately 47% use an outsourced managed security service provider (MSSP) or managed detection and response (MDR) provider, highlighting the need for in-house expertise coupled with outsourced services for additional capabilities.
Instant Free Access
Oops! Something went wrong while submitting the form.
State of Cloud Security in the Enterprise

Trusted by experts and enterprises worldwide