Professional Documents
Culture Documents
Cloud Adoption Report FINAL PDF
Cloud Adoption Report FINAL PDF
Cloud Adoption Report FINAL PDF
Executive Summary
Is everyone really moving to the cloud?
Cloud providers and investment gurus
are outdoing themselves to give that
impression. Promises of:
cost savings,
happier employees, and
cutting-edge performance
Turn companies such as Box and Cloudera into ballyhooed acquisitions or potential
IPO candidates. If the hype is to be believed, throngs of IT leaders are ready to shutter
their server rooms and move their infrastructures to the cloud, leaving traditional
hardware and software manufacturers choking in the rubble.
But is the reality of cloud adoption living up to the hype? We decided to run the
numbers and see. We separated the cloud dabblers from those showing signs of strategic
cloud adoption, and give our recommendations for how cloud customers should
proceed in the midst of the public cloud fiascos that continue to plague the industry.
Read on to find out more about how to take and deploy this first-ever insight in
your organization.
Results:
Conclusions:
After analyzing these numbers, we believe that for the cloud to reach its incredible
potential, business cloud customers must address security gaps that represent
significant threats, especially to large organizations and those in heavily regulated industries.
Cloud Computing
Top 5 areas that companies currently
support applications running on
public cloud computing services
50%
Email Systems
39%
Web Applications
October 2013
Collaboration Tools
31%
Databases
30%
0%
10%
20%
30%
40%
50%
60%
But how many organizations are going beyond tactical, employee-driven cloud
apps to embrace the cloud strategically across large portions of their company?
The best indicators are email and productivity suites, such as Google Apps or Microsoft
Office 365. Companies deploying those applications across large portions of their
organizations are most likely moving in the direction of adopting the cloud as a strategic
element in their business models.
7.7%
16.3%
Out of the 81,253 companies sampled, Google Apps clearly is the most popular service:
16.3 percent of companies use it, versus 7.7 percent using Microsoft Office 365.
However, when you account for company size, it is a dead heat: Organizations with
more than 1,000 employees use both services equally, at a rate of 8.8 percent each.
612 companies use Microsoft Office 365 while 610 use Google Apps.
More than
1,000 = 17.6%
Less than
500 = 24%
Employees
Employees
This difference makes sense when you consider the consumer-driven nature of cloud
adoption. Large organizations with established IT processes move more slowly
and have a higher degree of mistrust with respect to cloud security concerns.
These organizations, however, also have the biggest economic incentive to move to the
cloud, so we expect those numbers to even out over time.
As do shareholders
In a similar vein, private companies use cloud-based email more than public companies
and Google leads the way.
Privately-Held Companies
vs.
Publicly-Traded Companies
7.6%
8.8%
16.5%
11.9%
Predictably, Google adoption falls off substantially in publically traded companies, while
Office 365 use increases.
This trend makes sense when you consider the additional regulatory and reporting
burdens that public companies bear. Most cloud applications still lack the compliance
and auditing capabilities required by publicly traded companies, many of which have a
history with and substantial ties to Microsoft, based on on-premises experience and
familiarity with Microsoft Office over the years.
37%
10%
27%
However, larger, more established tech companiesthose with more than 1,000
employees or more than 10 years in businessare less likely to deploy email in the cloud.
18%
9% 8.6%
-40%
Security
Concerns
Complexity of
Integrating with
Existing IT
13%
11%
Technology
is Too New
7%
1%
0%
10%
6%
General
Resistance
Cost Too High
52%
33%
13%
8%
10%
20%
30%
40%
50%
60%
Among companies of all sizes, 42 percent in 2013 cite security concerns as a reason for
not using the cloud, versus 25 percent in 2011, an increase of 17 percent.
50%
40%
30%
32%
34%
37%
41%
42%
13%
20%
25%
10%
14%
12%
12%
14%
10%
12%
15%
7%
8%
7%
6%
7%
7%
7%
OCT
11
JAN
12
APR
12
JUL
12
OCT
12
JAN
13
APR
13
0%
32%
41%
Security Concerns
5%
JUL
13
Yet, of the cloud customers we sampled, only a tiny number have taken even the
most basic security step: implementing single sign-on (SSO) to create a manageable
authentication mechanism for all users and applications. Such a step helps stop
hackers who prey on lax password practices, and also makes it easier and faster for
companies to provision or de-provision user accounts.
% of Salesforce.com
customers using SSO
9.2%
5.5%
% of Box customers
using SSO
The Cloud Security Alliance (CSA) 2013 report on cloud security vulnerabilities ranks
threats in order of severity, according to industry experts.
Account or Service
No. 9 Vulnerabilities
Shared Technology
The top three threats? Data breaches, data loss, and account hijacking, respectively.
However, cloud providers tend to put more effort into protecting against the fourth and
fifth threats on the listinsecure APIs and denial of service attacks, respectively
because they put the entire service at risk. So cloud customers who rely solely on the
provider for security are at greater risk for all of these threats, including the malicious
insider threat, which comes in at No. 6.
Threat No. 8, lack of due diligence, points to the overall cloud security problems we face.
Remember the Dropbox fiasco of 2012? A hacker stole an internal Dropbox document
listing customers email addresses and launched a spam attack.
But a simple SSO authentication solution could have saved Dropbox a lot of
embarrassment and stopped the spammer in his tracks. SSO technology provides a
single login for all company applications, so when employees access cloud apps they
are automatically redirected to a company login page for authentication.
The IT organization now controls password requirements and can enable or disable
employee access across all company applications in one fell swoop, but employees
benefit, too. Instead of trying to remember which password to use for which service,
they only have to remember one, which saves time and frustration.
Conclusion
If youre well on your way to deploying cloud solutions, dont be lulled into complacency
by the constant stream of positive reinforcement coming from the media and cloud
providers. Cloud providers invest in the best security available, but there are still gaps
that you must fill when moving to the cloud.
Likewise, if you find moving to the cloud to be a daunting security headache, dont give
up on the cost efficiencies and productivity gains it offers. They are real. Todays cloud
security solutions take us back to the basic principles that IT organizations have relied
on for decades to protect their information, but architected for cloud and mobile.
We recommend you explore the ability of these technologies to keep your sensitive
corporate data safe.
Why Bitglass?
BYOD and Cloud are unstoppable trends. The benefits
are huge, but you can lose control of your data.
Regain control with Bitglass.
For IT: Secure cloud and mobile.
For employees: Privacy and unencumbered mobility.
Secure Cloud
Protect your cloud perimeter
Gain visibility and alerting
Secure data wherever it goes
Eliminate password issues with SSO
Support any cloud or internal app
Secure BYOD
Secure corporate data without
invading privacy
www.bitglass.com
2014 Bitglass, Inc.