1) What is the state of cloud security today?

To answer this question i think we first have to briefly touch on the differences between on-premise and in the cloud. The servers we use are hosted off-site and no longer under our control which can leave us vulnerable as these resources are often more available from the WAN. This leaves cloud security open to a host unique vulnerability types.

The storage of data plays a big role into cloud security and specially after Layer 4 and layer 7 DoS attacks are getting to be so common place and misconfigurations are easier to make than ever. The state of cloud security today is a landscape where we can draw 3 major conclusions:

• We can see the reliance on cloud computing increasing and the same goes for the need for cloud security
• Many organisations rely on extended security controls besides the native ones as they are not sufficient.
• While manual testing stays an important part of the workforce, organisations are looking to increase the share of tools as a supplement to the traditional workforces