Cloud advantage or cost?

August 2019 Cyber Security, IT infrastructure

It seems as though each day brings another article about IoT, big data analytics and cloud architectures talking about the unlimited potential for companies trying to gain a competitive edge in an increasingly digital world. Early adopters, who are a bit further along the road to digital transformation, are already enjoying some the benefits of the public cloud, like economies of scale, utility billing and more.

“What may not be entirely clear, however, is how the shared security model of the public cloud affects your security responsibilities,” says Simon McCullough, major channel account manager at F5 in South Africa.

“While cloud providers typically do an excellent job of managing the security of their physical data centres, infrastructure and rented systems, they can’t do much about the things businesses deploy or put in the cloud, namely applications, services and data.”

At the same time, according to F5 Labs research, 53 percent of data breaches initially target the application layer, so, no matter how you look at it, security in the cloud is as important as security in traditional data centres.

Speak to any business owner who’s felt the effect of a breach and you’ll be told that a robust and agile web application firewall (WAF) isn’t a “might do” any more but is rather a non-negotiable.

Traditionally, says another F5 white paper, WAFs were deployed as hardware appliances on premises in enterprise data centres. With applications migrating to cloud-based Infrastructure-as-a-Service (IaaS) environments and organisations leveraging cloud Software-as-a-Service (SaaS) apps, security teams are challenged to protect applications beyond the data centre—without compromising performance, scalability, and manageability.

Enter the WAF

“In our report, titled The Hidden ROI of Cloud-Friendly Security, we talk about the fact that 40 percent of all traffic can be unwanted bots, malware, scanners and the like and that you, as a business, are paying their way,” he continues.

“Most businesses are billed on a utility basis when it comes to traffic for applications in the cloud and incur real, quantifiable costs every time a bot makes a request of any resource associated with your cloud account. This means companies are likely paying hefty bills as a result of non-customer traffic.”

Deploying solid security tools, like Application Delivery Controllers (ADCs) and WAFs in front of cloud-based apps can protect these applications and save money by filtering out costly, unwanted traffic while effectively reducing the resources allocated to servicing bots and scanners.

“Using an ADC or WAF in the cloud can deliver measurable return on the cost of your investment while ensuring services stay available and secure,” says McCullough.

Security tool choice matters to the cloud

Anton Jacobsz, managing director at Networks Unlimited Africa, a value-added distributor of F5 in Africa, says it doesn’t end there. “Good security tools can better enable and inform business intelligence,” he says. “A WAF or ADC can make it easier to analyse traffic patterns and data to and from the cloud-based web applications and, with that data at hand, businesses will be better equipped to make resource management decisions that can cut costs quite dramatically.”

According to the 2017 WhiteHat Security Application Security Report, almost all apps contain three or more vulnerabilities, with half of those being critical. This equates to an increased risk of data loss, theft or denial of service if not remedied quite quickly – which is where WAFs can help.

Development teams are now able to use the capabilities inherent to WAFs to address OWASP Top 10 risk areas, mitigating layer 7 DOS attacks, detecting and managing bot activity and foiling zero-day attacks.

“This is all outside of, and without interruption to, normal development cycles,” says Jacobsz. “Behavioural analysis can also prove to be very effective in identifying patterns and managing traffic to and from your cloud-based web applications.

“And, while these capabilities can be difficult to build and manage on your own, a solid security solution provider will help make the implementation of these services simple and effective.

“You may not suspect anyone of targeting your business but those of a trusting nature are a cyber criminal’s dream,” he says. “The safest approach is to implement security tools that can not only help reduce costs but can also provide the right level of protection for the smooth operation and success of cloud-based applications.”

For more information, contact Esti Bosch, Networks Unlimited,

Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Patient critical – healthcare’s cybersecurity pulse
August 2019, Wolfpack Information Risk , News, Cyber Security, Healthcare (Industry)
The healthcare industry has become one of the leading cybersecurity attack vectors worldwide for several reasons.

Building a Human Firewall
August 2019, Kaspersky Lab , Cyber Security, Training & Education
Riaan Badenhorst, general manager of Kaspersky in Africa answers some questions on the role of people in cybersecurity risks.

Double dose of storage security
August 2019 , Products, IT infrastructure
The integration of InfiniBox and SafeNet KeySecure platforms brings data-at-rest encryption together with centralised logging, auditing capability.

How far are we really at with artificial intelligence?
August 2019, Axis Communications SA , Editor's Choice, CCTV, Surveillance & Remote Monitoring, IT infrastructure, Residential Estate (Industry)
Justin Ludik unpacks exactly how far AI has come and what it potentially can do for society and more importantly, surveillance.

Inundated with cyberattacks from all directions
August 2019 , Editor's Choice, Cyber Security, Security Services & Risk Management
IT managers are inundated with cyberattacks coming from all directions and are struggling to keep up due to a lack of security expertise, budget and up-to-date technology.

Under cyberattack
August 2019, Kaspersky Lab , Cyber Security, Residential Estate (Industry)
Cybersecurity is not something one usually associates with residential estates, but the threats from cybercriminals apply equally to estates as they do to businesses and the individual homeowner.

Collaboration and tech key to safer, connected communities
August 2019 , Residential Estate (Industry), IT infrastructure
The advent of fibre-to-the-home has not only changed the way we work and play but has also heralded the launch of a number of advances for the security industry.

Cyber tools and solutions
August 2019, Technews Publishing , Editor's Choice, Cyber Security, IT infrastructure, Residential Estate (Industry)
Hi-Tech Security Solutions looks at the various options we have when it comes to protecting yourself from the ever-growing scourge of cybercrime?

Understanding the data protection requirements and how to comply for POPI or GDPR
July 2019 , Cyber Security, Security Services & Risk Management
For many companies that must comply with these legislations, the best way to prepare is to implement a solid data protection strategy that guards against loss of data.

Going safely into the brave new world of 4IR
July 2019 , Industrial (Industry), Cyber Security
Put cybersecurity at the heart of industrial digitisation on the journey to 4IR.