For years, many healthcare organizations tended to be skeptical and resistant (if not outright hostile) to the idea of storing their data, particularly protected health information, in the cloud. IT and security decision-makers had deep reservations about stashing such sensitive data anywhere but their own on-premises servers, safe under their own watchful eyes. But not too long ago that changed, and seemed to change quickly. To the surprise of many, over the past few years, it appears that many healthcare providers have been getting markedly more comfortable putting their trust in the cloud. "If you had asked me in 2011, I would have predicted that healthcare would still be one of the slower moving industries," said Jason McKay, chief technology officer of Logicworks, a managed hosting company that helps organizations in many sectors build and manage cloud infrastructure.
Google on Wednesday announced a bevy of new security features for both the Google Cloud Platform and G Suite that Google said aim give businesses more control over their security environment. On the Google Cloud Platform side, the tech giant unveiled VPC Service Controls. Currently in alpha, the controls function like a firewall for API-based services on GCP, preventing data exfiltration in the event of a breach. "Imagine constructing an invisible border around everything in an app that prevents its data from escaping, and having the power to set up, reconfigure and tear down these virtual perimeters at will," said Google's VP for security and privacy Gerhard Eschelbeck, in a blog post. Google also is launching its Cloud Security Command Center tool that the company says gives enterprises deeper insights into the health of their data security across Google Cloud services.
While security as a percentage of IT spend continues to grow at a robust rate, the cost of security breaches is growing even faster. Organizations are spending close to $100 billion on a dizzying array of security products. In fact, it is not uncommon for CISO organizations to have 30 to 40 security products in their environment. However, if you ask chief information security officers how they feel about their security risk, they will express concerns over being highly exposed and vulnerable. Artificial intelligence (AI) and machine learning (ML) can offer IT security professionals a way to enforce good cybersecurity practices and shrink the attack surface instead of constantly chasing after malicious activity.
It was the antivirus software that we relied on to secure systems and networks, plus of course endpoint devices too. But today, with technology evolving in an unprecedented manner, traditional antivirus has given way to all kinds of advanced security software. Endpoint protection is today almost impossible with traditional endpoint antivirus. We have new attack techniques like polymorphic malware, wrappers and packers, which would go undetected if we rely on security provided by traditional endpoint antivirus software. Such software depend on static signatures to identify known threats and hence won't be able to detect such advanced malware.