Source: thenewstack.io
Avoiding Technical Security Debt During Cloud TransformationCategory: Business, Security, Data, Kubernetes
Cloud transformation, or the process of migrating workloads to the cloud, creates a number of benefits — including greater agility, scalability, and infrastructure centralization. But cloud transformation can come with a downside: it leads to technical security debt (and other types of technical debt) that gets overlooked as businesses “lift-and-shift” legacy workloads into the cloud — often without fully or genuinely migrating those workloads to a cloud native architecture. Here’s a look at the types of debt that cloud transformation can cause, especially in the realm of security operations, and best practices for avoiding it.
To contextualize this risk, consider the following examples of ways in which technical security debt — meaning inefficient security processes that, when repeated on a continual basis, hamper your ability to keep security operations lean, mean and effective — could arise during cloud transformation.
Nonetheless, you can take steps to minimize the amount of technical security debt you’ll face during and after the migration of some or all of your workloads to the cloud: Again, you can’t expect to prevent every piece of technical security debt from creeping into your cloud transformation process.
To contextualize this risk, consider the following examples of ways in which technical security debt — meaning inefficient security processes that, when repeated on a continual basis, hamper your ability to keep security operations lean, mean and effective — could arise during cloud transformation.
Nonetheless, you can take steps to minimize the amount of technical security debt you’ll face during and after the migration of some or all of your workloads to the cloud: Again, you can’t expect to prevent every piece of technical security debt from creeping into your cloud transformation process.
Related Articles
Community Partners
DevOps Careers