The Plain English Version
Cloud security protects your data and applications running on cloud services like Microsoft 365, Google Workspace, AWS, and Dropbox. The cloud provider secures the infrastructure, but configuring services securely is your responsibility.
Just because data is in the cloud does not mean it is automatically secure. Misconfiguration is a leading cause of cloud breaches.
Shared Responsibility Model
Provider handles: Physical security, infrastructure, network
You handle: Data, access management, configuration, identity
Common Mistakes
- No MFA - Cloud accounts are prime targets
- Over-sharing - Files accessible to anyone with the link
- No backup - Cloud providers have limited retention
- Shadow IT - Staff using unapproved services
Getting It Right
Enable MFA everywhere. Review sharing settings. Back up cloud data independently. Know what services your staff use. Enable logging and alerts.