Enterprises Lack GDPR
November 10, 2017
from a cloud adoption survey conducted at VMWorld 2017 have been
released. The survey of 323 respondents assessed deployment
decisions for cloud infrastructure, containers and workload
security along with risk and compliance from cloud deployments.
The most significant result was the large number of companies
that are not prepared for General Data Protection Regulation
(GDPR) compliance that takes effect in May 2018.
The European Union (EU) regulation for data privacy not only
applies to organizations located within the EU, but it will also
apply to organizations located outside of EU member nations if
they process and hold the personal data of residents within the
European Union, regardless of the company’s location.
Cloud Platforms and Containers Survey Results
In addition to survey results
regarding GDPR, HyTrust’s 2017 survey also revealed findings on cloud
platform deployments, risks, and containers:
Private/Public Cloud Workload Risks
- The top risk for
on-premises/private cloud infrastructure was “uncontrolled or
unmonitored access by admins” (32%).
- The top public cloud
infrastructure risk was “malicious or accidental exposure of
workload data” (30%).
remain an area of active exploration with limited production
deployments, which provides time for security professionals to
architect and deploy security policy across multi-vendor,
multi-cloud infrastructure. Only 12% of those surveyed described
their container deployment as “production” while 75% are doing
nothing or just beginning to evaluate.
Cloud Platform Deployments
- Although the use of hybrid
cloud infrastructures is getting more popular, 22% are not using
public clouds at all.
- Just under half (44%) have no
hybrid cloud deployment and only 28% have a single vendor hybrid
- Only 10% of organizations are
not using encryption in public cloud, down from 28% last year.