THALES
A new global study from Thales , with research from the Ponemon Institute, has exposed an increasing disparity between the rapid growth of data stored in the cloud and an organization’s approach to cloud security. Although nearly half (48%) of corporate data is stored in the cloud, only a third (32%) of organizations admit they employ a security-first approach to data storage in the cloud.
This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20191008005492/en/
Surveying over 3,000 IT and IT security practitioners in Australia, Brazil, France, Germany, India Japan, the United Kingdom and the United States, the research found that only one in three (31%) organizations believe that protecting data in the cloud is their own responsibility.
Increased multi-cloud cloud use, but with risks
With the proliferation of cloud-based services, businesses and other organizations are increasingly dependent on cloud providers. In fact, nearly half (48%) of organizations have a multi-cloud strategy, with Amazon Web Services (AWS), Microsoft Azure and IBM being the top three. The study found that, on average, organizations use three different cloud service providers and over a quarter (28%) are using four or more.
Despite storing sensitive data in the cloud, nearly half (46%) surveyed revealed that storing consumer data in the cloud makes them more of a security risk. Over half (56%) also noted that it posed a compliance risk. In addition, organizations believe that cloud service providers bear the most responsibility for sensitive data in the cloud (35%), ahead of shared responsibility (33%) and themselves (31%). Even though businesses are pushing the responsibility to cloud providers, only 23% say security is a factor in selecting them.
“With businesses increasingly looking to use multiple cloud platforms and providers, it’s vital they understand what data is being stored and where,” said Larry Ponemon, chairman and founder of the Ponemon Institute. “Not knowing this information makes it essentially impossible to protect the most sensitive data --ultimately leaving these organizations at risk. We’d encourage all companies to take responsibility for understanding where their data sits to ensure it’s safe and secure.”
Encryption increasing, but organizations handing over keys to cloud providers
Roughly half (51%) of businesses and other organizations still do not use encryption or tokenization to protect sensitive data in the cloud. The study uncovered regional disparities in terms of data security, with German organizations being the most advanced in their use of encryption at 66%.
Organizations are handing over the keys to their encrypted data to cloud providers. Nearly half of cloud companies (44%) provide the encryption keys when data is encrypted in the cloud, ahead of in-house teams (36%) and third parties (19%). On top of this, 53% are controlling these encryption keys themselves, despite 78% saying it’s important their organization retains control of the keys.
Over half of businesses (54%) think cloud storage makes it more difficult to protect sensitive data, up from 49% last year. More than 70% believe that data in a cloud environment is harder to protect due to the complexity of managing privacy and data protection regulations, while an additional two-thirds (67%) cited the difficulty of applying conventional security methods in the cloud.
“This study shows that businesses today are taking advantage of the opportunities that new cloud options offer, but aren’t adequately addressing data security,” said Tina Stewart, vice president of market strategy for cloud protection and licensing activity at Thales . “Having pushed the responsibility towards cloud providers, it is surprising to see that security is not a primary factor during the selection process. It doesn’t matter what model or provider you choose, the security of your business’ data in the cloud has to be your responsibility. Your organization’s reputation is on the line when a data breach occurs, so it is critical to ensure in-house teams keep a close eye on your security posture and always retain control of encryption keys.”
For more information, attend our “Global Trends in Cloud Security: Gaps in Security Persist in a Multi-Cloud World” webinar taking place on November 7 or visit the 2019 Thales Cloud Security Study website .
Research methodology
This research was conducted by the Ponemon Institute on behalf of Thales with 3,667 IT and IT security practitioners surveyed across the Australia, Brazil, France, Germany, India, Japan, the United Kingdom and the United States.
Industry insight and views on the latest data security trends can be found on the Thales blog at blog.thalesesecurity.com .
Follow Thales on Twitter , LinkedIn , Facebook and YouTube .
About Thales
Thales (Euronext Paris: HO) is a global technology leader shaping the world of tomorrow today. The Group provides solutions, services and products to customers in the aeronautics, space, transport, digital identity and security, and defence markets. With 80,000 employees in 68 countries, Thales generated sales of €19 billion in 2018 (on a pro forma basis including Gemalto).
Thales is investing in particular in digital innovations — connectivity, Big Data, artificial intelligence and cybersecurity — technologies that support businesses, organisations and governments in their decisive moments
PLEASE VISIT
Thales Group
Security
Download HD photos
View source version on businesswire.com: https://www.businesswire.com/news/home/20191008005492/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Andersen Consulting tilføjer samarbejdspartneren Cloud2321.11.2025 18:45:00 CET | Pressemeddelelse
Andersen Consulting indgår en samarbejdsaftale med Cloud23, en næstegenerations konsulentvirksomhed, der integrerer data og kunstig intelligens med henblik på at drive digital transformation. Cloud23 er baseret i Sydafrika og leverer intelligente, platformsbaserede løsninger til kunder inden for sektorer som finans, telekommunikation, sundhedsvæsen og produktion. Virksomhedens ydelser spænder over Salesforce-rådgivning og -implementering, managed services og ai-strategi, hvilket giver organisationer mulighed for at modernisere kundeengagement, optimere driften og skabe målbare resultater. “Vores mål hos Cloud23 har altid været at forenkle transformation gennem smart, skalerbart design,” udtaler Ram Ramakrishnan, stifter og administrerende direktør for Cloud23. “Vi fokuserer på at afstemme teknologi med formål og levere resultater, der understøtter langsigtet vækst, kundeværdi og innovation. Samarbejdet med Andersen Consulting giver os mulighed for at styrke vores mission og opnå en stø
AI Takes Out the Trash: Largest U.S. Recycling Project to Extend Landfill Life for Virginia Residents21.11.2025 13:30:00 CET | Press release
Southeastern Public Service Authority of Virginia contracts with AMP to cost-effectively process municipal solid waste, boost recycling and landfill diversion rates The Southeastern Public Service Authority of Virginia (“SPSA”), the regional waste authority for South Hampton Roads, has signed a 20-year contract with Commonwealth Sortation LLC, an affiliate of AMP Robotics Corporation (together, “AMP”), to provide solid waste processing services for SPSA’s eight member communities and their 1.2 million residents. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251120330758/en/ Building on a nearly two-year pilot project in Portsmouth—which featured an AMP ONE™ system capable of processing up to 150 tons of locally sourced municipal solid waste (“MSW”) per day—AMP will now scale its technology region-wide. Under this long-term partnership, which will facilitate the largest recycling project in the country, AMP will deploy addit
RSA Recognized for the Second Consecutive Year in the 2025 Gartner® Magic Quadrant™ for Access Management21.11.2025 13:00:00 CET | Press release
RSA, the security-first identity leader, today announced that RSA® ID Plus has been recognized for the second year in a row in the Gartner® Magic Quadrant™ for Access Management. “The RSA Access Management strategy has never been about being everything to everyone,” said Greg Nelson, RSA CEO. “We specialize in protecting organizations where risk tolerance is at its lowest and security requirements are at their highest. Our focus is intentional: providing security-first access management that supports compliance, ensures resilience, and delivers confidence at scale.” “RSA specializes in the workforce access management use cases where security, compliance, and operational resilience are non-negotiables,” said Jim Taylor, RSA President, Chief Product and Strategy Officer. “Our product development strategy will continue to emphasize the key qualities that highly regulated industries prioritize, including user experience, strong support for workforce management, and intelligent posture mana
NIQ and Amazon Marketing Cloud (AMC) Collaborate to Measure Reach and Impact of Cross-Platform Ad Campaigns in Italy21.11.2025 09:00:00 CET | Press release
NIQ and Amazon Marketing Cloud (AMC) have announced a new collaboration to study the effectiveness of cross-platform advertising across linear TV and Amazon Ads inventory in Italy. Through the collaboration advertisers and agencies will gain actionable insights into the relative performance of ad placements across digital, linear TV and streaming environments, including how each contributes to incremental reach and influences product purchases on Amazon’s ecommerce platforms. The insights are made possible by using high-quality data from Sinottica®—a well-established single-source consumer panel in Italy owned by NIQ—with data from Amazon Marketing Cloud. Specifically, the research will leverage Sinottica’s linear TV data alongside several Amazon inventory sources, including Amazon DSP, Sponsored Ads (Products, Brands, Display), and Streaming TV (Prime Video, Twitch, Fire TV). This approach will enable a deeper understanding of how ad exposure across digital and TV channels translates
Ahead of Holiday Season, Visa Identifies Five Transformative Forces Reshaping Global Payment Security20.11.2025 19:50:00 CET | Press release
New Biannual Threats Report Reveals Fundamental Shift in Fraud Operations as Criminals Adopt Industrial-Scale Tactics To celebrate International Fraud Awareness Week, Visa (NYSE: V) today released its Fall 2025 Biannual Threats Report, revealing five forces that are transforming the global payments security landscape. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251120412198/en/ The report, produced by Visa's Payment Ecosystem Risk and Control (PERC) team, draws on intelligence from Visa's global network to identify how criminal operations are evolving with unprecedented speed, scale, and sophistication. "The payments ecosystem is experiencing a paradigm shift in how fraud operates," said Paul Fabara, Chief Risk and Client Services Officer at Visa. "Criminals are no longer working as opportunistic individuals-- they're operating like tech startups, building reusable infrastructure and deploying systematic, industrial-scale
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom