Understanding the cloud shared responsibility model
June 16, 2021
Over the past year, we witnessed a transition to the cloud as companies had to quickly adjust to the almost instantaneous move to a remote work environment. But in many cases, they prioritized practicality over security to avoid business disruption, leaving many organizations vulnerable.
A significant reason for these vulnerabilities is that many organizations rely on default security offerings from their cloud providers, which are often provided as do-it-yourself toolkits and guidelines, leaving the actual configuration to the user.
In a cloud-first environment, organizations now operate under a shared responsibility model with cloud providers, which lays out what responsibilities belong to the cloud provider and what responsibilities belong to the user. While the concept of a shared responsibility model is relatively easy to understand, implementing it requires a great deal of coordination.