Most enterprises lack in detailed security policy regarding access to enterprise data, says Verizon security expert at the Nasscom Cloud and Mobility Summit 2012 said.
Despite the hiccups and challenges surrounding cloud adoption and BYOD policy in enterprises, the coming years are going to be exciting and keenly watched, observed experts,as reported by Cybermedia India Online Ltd – (CIOL).
Initiating a debate on ‘Solutions to Security and Compliance Challenges in the Cloud’ Kartik Shahani, Country Manager, India and SAARC, RSA pointed out that despite the benefits, the biggest challenge faced by enterprises when they think of moving to cloud is the security aspect.
There are several issues about compliance, manage data leakage or meeting regulatory requirements, he added.
Joining the discussion, Mark Goudie, Regional Manager, Investigative Response, Verizon Asia -Pacific, said that Data classification is the Number one thing enterprises need to do when moving to cloud.
He observed that enterprises lack a detailed security policy regarding access to enterprise data. Every business document needs to be classified to decide if it should go to cloud or not.
Agreeing with Goudie was Mahesh Gupta, VP, Business Development, Borderless Networks, CISCO, India & SAARC who added that enterprise needs to define policies with regard to providing access from employees’ personal devices from different locations.
“Providing access to employees from wi-fi public hotspots ( to enterprise data) can be quite dangerous. So, networks should be context aware too,” he stressed.
Pointing out at different security regulations in different countries and the challenges it brings before cloud adoption, Rahul Jain, Sr. Consultant, Security Practices, DSCI, said ”It is often viewed that laws do not scale up to developments in technology. But, law cannot always be perspective and challenges will come with its interpretation. Our policy makers need to interact more with the industry before bringing regulations,” he said.