Data Security

Data is undoubtedly a crucial aspect for every industry today!
Given this fact, there has been a strong emphasis on ways to ensure data security, data management, data availability and optimization, and more functions around data.
Same was the result of a renowned Container Adoption Survey.
While establishing ‘container infrastructure’ as a perfect answer for many business-critical applications, the survey spoke about security and other challenges around container implementation.
Thus, it makes a strong case for ‘data security and availability’ in the current IT environment.

Let’s take a look at key contents of the survey:

container-technology-adoption-survey

Rising Container Adoption

The survey reported a rise in container technology adoption from 55% in 2017 to 87% as of the first half of 2019. Surprisingly, 90% of companies reported about running applications in production phase, showing a 23% rise since 2017. Investment in container technology has also increased with around 24% respondents saying their container technology investment touches USD 500k annually. While, 17% organizations spend USD 1 million. The demand for fast-paced app delivery and developing more portable apps have been prime reasons behind the rising container adoption. Kubernetes and Docker continue to dominate the container market with Kubernetes enjoying the competitive edge. Moreover, security use-case in DevOps environment is also boosting container adoption. Moreover, container implementation in DevOps facilitates independent rolling updates to various service modules without impacting the application performance, thus contributing to continuous delivery mechanism.

Data Security and Availability Challenge!

Data security includes data encryption and key management practices that protect data across all applications and platforms. Persistent storage emerged as the initial challenge as container adoption continued to rise. But the Container Storage Interface (CSI) addressed the concern! Then arrived the key barriers we are talking about i.e. Data Security and Availability!

Don’t forget to check: The Importance of Enterprise Digital Transformation

Under the umbrella of Data Security and Availability were the list of challenges that the survey respondents report:
  • 40% respondents say ‘Data Management’
  • 35% of them say ‘Multi-cloud and cross datacenter support
  • 34% respondents say ‘Reliability’
When it comes to Data Management challenges, most organizations report security and availability concerns in the production stage:
  • 56% respondents say ‘Data Security’ is their major data management challenge
  • 46% are concerned about data loss
  • 40% consider planning for disaster recovery and business continuity as a serious data management challenge
Top-3 security-related challenges identified in the survey include:
  • 61% say ‘Data Security’
  • 43% say Vulnerability Management
  • 34% vote for Runtime protection
Under Data Security, the survey found:
  • 46% respondents were worried about ‘Data Protection and Backup’
  • 21% considering ‘Data Encryption’ as a serious concern
  • 19% reporting ‘Detection and Prevention of Data Exfiltration’ as a challenge
Majority respondents report ‘Data Security’ is the key security strategy, followed by:
  • Data Encryption among 64% respondents
  • Runtime monitoring among 49% respondents
  • Vulnerability scanning in registries for 49% respondents
  • Vulnerability scanning in CI/CD pipelines for 49% respondents
  • Anamoly blocking through runtime projection for 48% respondents

Who’s Responsible?

Now, the question is ‘who is responsible for container security?’
  • 31% of respondents feel that’s the responsibility of core Security teams
  • 24% believe it’s a joint responsibility or DevSecOps teams
  • 47% respondents in DevOps roles say ‘DevSecOps’ teams
  • 54% respondents in Security roles say its Security team’s responsibility
  • These varied opinion shows some lack of clarity on container security and governance among teams, despite the accountability they hold for security. But as container technology continues to rise further, the clarity on ‘security responsibility’ becomes need of the hour for organizations. Are you also among those organizations confused with container security implementation?

    About Author:
    Sai Nikesh D is a senior content writer at the Veritis Group working on technology, news & other collaterals.

LEAVE A REPLY

Please enter your comment!
Please enter your name here