Source: thenewstack.io
Why the Security Industry Has Workload Protection All WrongCategory: Software, Security, Data, firewall, automation
Check Point sponsored this post. Organizations report that the size of their security teams have ballooned in an effort to keep up — but this is more often the result of an “old world” approach to protecting application workloads in the cloud, which is often based on a misapprehension of what workload protection actually is.
The problem is that many security teams have run with this definition (and continue to do so), believing that workload protection is just about having a good container and serverless security solution.
Ultimately, it’s impossible to properly manage workload security in the cloud using point solutions, because (as I’ve already noted) the cloud moves much too fast for that.
For security to be truly effective in this environment — and to work as a holistic solution — it needs to be present in the development pipeline from the start, with configuration policies baked into the application as it is coded.
The problem is that many security teams have run with this definition (and continue to do so), believing that workload protection is just about having a good container and serverless security solution.
Ultimately, it’s impossible to properly manage workload security in the cloud using point solutions, because (as I’ve already noted) the cloud moves much too fast for that.
For security to be truly effective in this environment — and to work as a holistic solution — it needs to be present in the development pipeline from the start, with configuration policies baked into the application as it is coded.
Related Articles
Community Partners
DevOps Careers