Discussing hybrid and multi-cloud, experts from FPT Software – Mr. Pham Tung Duong, Mr. Ly Binh Lap, and Mr. Tran Trung Hieu shared unique security challenges and solutions for organizations to boost their operation efficiency, in this trendy but highly complicated environment.
As a standard operation model, multi-cloud is widely adopted by organizations in various industries. According to HashiCorp’s 2021 State of Cloud Strategy Survey, 76% of respondents stated that their organization had already used a multi-cloud strategy, while 53% believed that business goals could be achieved with the help of a multi-cloud strategy, as large enterprises, in particular, acknowledged the value of multi-cloud.
Multi-cloud obviously has several advantages which organizations can utilize to attain their operational goals. Businesses, for instance, can make use of the capabilities of cloud providers in handling risks such as security vulnerabilities or system hacking. It also provides a unique perk for businesses when entering a new market. “Adopting multi-cloud also provides a direct approach to organizations so that they can comply quickly with security regulations of highly demanding markets. The regulation of privacy, for example,” – Mr. Hieu said.
Mentioning the use cases of reputable cloud providers, Mr. Duong considered high availability as one of the most advantageous benefits. In fact, there are no providers committing 100-percent availability without any incidents like the outage of the availability zone. Therefore, using more than one cloud provider helps organizations maintain their operation in case of unexpected issues.
However, using multi-cloud providers poses a challenge also. For the safe use of multi-cloud, cloud engineers have to tackle security challenges regarding compliance with general privacy policies and standards, and sharing responsibility between cloud providers and customers. They also met with a lack of capable IT experts working for the business, as well as a lack of domain knowledge and of particular business operations.
Another challenge is to develop security automation in the environment of various providers. According to Mr. Lap, multi-cloud requires high automation that forces cloud engineers to explore solutions combining useful native services and creating smooth security operations on multi-cloud.
In multi-cloud architecture design, it is also about how to consolidate security-related best practices of cloud providers. “We have an approach: specializing in the involvement of different parties for different purposes, case by case. Identity management; for example, would be certainly assigned to Azure Active Directory while single sign-on (SSO) of AWS is applied as an additional service” – Mr. Hieu shared one case of FPT Software’s team. Nevertheless, the services of Azure may not be compatible with AWS, which requires a third party to harmonize and solve the problems between the services of providers.
To conclude, an optimal approach has to be proven through positive results, so all three experts advised a strategy, accompanied by various tests which clearly identify the responsibility of the involved parties. It is also crucial that cloud engineers and IT engineers develop a security automation process and beware of threat detection to maintain safety in the hybrid and multi-cloud environment.News Source: Businesswire