Cloud security uncertainty: Do you know where your data is?

Engineer Working on Desktop Computer in a Technological Office

Authors

Jonathan Reed

Freelance Technology Writer

How well are security leaders sleeping at night? According to a recent Gigamon report, it appears that many cyber professionals are restless and worried.

In the report, 50% of IT and security leaders surveyed lack confidence in knowing where their most sensitive data is stored and how it’s secured. Meanwhile, another 56% of respondents say undiscovered blind spots being exploited is the leading concern making them restless.

The report reveals the ongoing need for improved cloud and hybrid cloud security. Solutions to reveal blind spot vulnerabilities are urgently necessary as well.

Think Newsletter

Would your team catch the next zero-day in time?

Join security leaders who rely on the Think Newsletter for curated news on AI, cybersecurity, data and automation. Learn fast from expert tutorials and explainers—delivered directly to your inbox. See the IBM Privacy Statement.

Strong cloud and hybrid cloud security strategy needed

The worries exposed in the Gigamon report aren’t due to an active imagination on the part of cyber pros. Attacks are bombarding the security front lines. The report cites that 90% of those surveyed have suffered a data breach in the last 18 months.

As per the report, many IT and security teams lack critical visibility across data in motion from on-premises to the cloud. And they may not acknowledge these blind spots precisely because they can’t see them.

To manage a cohesive hybrid, multi-cloud security program, teams clearly need to establish visibility and control. This means integrating the appropriate controls, orchestrating workload deployment and establishing effective threat management.

Some solutions involve both cloud-native security controls and secure-by-design methodology. Furthermore, security orchestration and automation should be established to beef up protection further.

Explore data security solutions

Security Intelligence | 25 February, episode 22

Your weekly news podcast for cybersecurity pros

Whether you're a builder, defender, business leader or simply want to stay secure in a connected world, you'll find timely updates and timeless principles in a lively, accessible format. New episodes on Wednesdays at 6am EST.

Watch the latest podcast episode

Where’s your data?

The continued struggle with data location has also been impacted by regulatory action. For example, the GDPR requires that users’ personal data and privacy be adequately protected by organizations that gather, process and store that data.

All this has given rise to concerns about data residency (data must be stored where it’s collected), data localization (data must remain in a specific place) and data sovereignty (rights and control over data based on jurisdiction).

However, cloud data residency is complicated by how cloud resources are deployed and used. For example, with dynamic cloud provisioning, resources are allocated upon demand, which can increase the attack surface. Furthermore, transient microservices in the cloud can result in data access and movement that is hard to detect and monitor.

Given these concerns, how can a security pro get any rest at all?

Know your data’s whereabouts

Ensuring data residency relies on two critical capabilities: localization and compliance monitoring. Localization technology detects the whereabouts of data, its copies and any movement within the cloud. Compliance monitoring technology centralizes, analyzes and reports on the adherence of cloud environments to regulatory requirements.

A Data Security Posture Management (DSPM) platform offers these capabilities by enhancing visibility into user activities and behavioral risks, aiding organizations in regulatory compliance. DSPM identifies the location of data and its copies stored in the cloud. DSPM also tracks data flows to and from cloud resources that may pose security risks.

Exposing data blind spots

What about those blind spots keeping security teams up at night? Attack Surface Management (ASM) can help by continuously monitoring IT infrastructure to detect blind spots and remediate potential points of attack.

This may involve deploying network monitoring tools capable of inspecting encrypted traffic, implementing cloud-native security controls and integrating cloud SIEM systems to correlate security events across on-premises and cloud environments.

Additionally, organizations should regularly assess their attack surface and adjust security measures accordingly to adapt to evolving threats and infrastructure changes.

The four core processes in attack surface management include:

Asset discovery: Automatically scans for entry points. Assets include computers, IoT devices, databases, shadow IT and third-party SaaS apps.
Classification and prioritization: Assigns a risk score based on the probability of attackers targeting each asset. Teams can categorize the risks and establish a plan of action to fix issues.
Remediation: Involves fixing issues with operating system patches, debugging or enhancing data encryption.
Monitoring: Continuous scanning for new vulnerabilities and remediating attack vectors in real time.

Security teams want peace of mind. Solutions such as cloud security strategy services and attack surface management just might help them rest a bit easier.

IBM X-Force Threat Intelligence Index 2026

Gain insights to prepare and respond to cyberattacks with greater speed and effectiveness with the IBM X-Force® Threat Intelligence Index.

Resources

Guardium webinars

Learn how to protect your data across its lifecycle from our webinars.

Cybersecurity explained

Techsplainers by IBM breaks down the essentials of cybersecurity, from key concepts to real‑world use cases. Clear, quick episodes help you learn the fundamentals fast.

Cybersecurity in the era of generative AI

Learn how today’s security landscape is changing and how to navigate the challenges and tap into the resilience of generative AI.

What is data security?

Find out how data security helps protect digital information from unauthorized access, corruption or theft—throughout its entire lifecycle.

IDC MarketScape: Cybersecurity consulting services vendor assessment

See why IBM has been named a major player and gain insights for selecting the cybersecurity consulting services vendor that best fits your organization’s needs.

What is a cyberattack?

A cyberattack is an intentional effort to steal, reveal, alter, disable or eliminate data, applications or other assets through unauthorized access.

Related solutions

Cloud security services

Protect your hybrid cloud and multicloud environments through continuous visibility, management and remediation.

Explore cloud security services

Cloud security solutions

Move confidently to hybrid multicloud and integrate security into every phase of your cloud journey.

Explore cloud security solutions

IBM Security and Compliance Center

Address unified security, compliance and risk visibility across hybrid multicloud environments.

Explore IBM Security and Compliance Center

Take the next step

Securely manage infrastructure and resources ahead of advanced threats. Our experts help ensure cloud and platform security, with broader visibility to cloud infrastructure, both now and into the ever-evolving future.

Explore cloud security services

Explore cloud security solutions