View from India: Cloud computing on the rise in India
India’s role as a major stakeholder in cloud computing is increasing, with Bangalore identified as the country’s IT hub.
India’s role as a major stakeholder in cloud computing is increasing. Since Bangalore is identified as the country’s IT hub, it is only natural that the Bangalore Chapter of the Cloud Security Alliance (CSA) is in the process of formalising its chapter deeper and further strengthening its position in Bangalore. The CSA defines itself as a global organiation dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment.
Cloud represents the future of an agile enterprise and its benefits are being passed on to consumers through which new technologies such as Internet of Things (IoT) and quantum computing.
“The requirements in cloud are growing globally and this opens out opportunities for building a professionally trained workforce that can handle the emerging requirements of the cloud security system”, said Sandip Kumar Panda, chairman, CSA Bangalore Chapter, speaking at the CSA Bangalore Summit held on June 14, 2018.
“In the process, we get an insight into global trends. Along with global trends, it would be interesting if we can get a perspective into the Indian scenario. Research in niche areas like incident management can create domestic market for the same.”
According to data from the Ministry of Micro, Small and Medium Enterprises (MSMEs) India is home to 50 million MSMEs, which makes it among the world’s largest MSMEs. Given the fact that MSMEs and the government are increasingly relying on scalable IT systems and solutions, it is understandable that they shift their processes along with sensitive information on to the cloud, which also carries the promise of security assurance.
“To begin with, banking and financial services have been very sensitive in terms of data security, but that has been overcome. Now, security in cloud is being commoditised. Within cloud security, there’s scope to explore various segments like access management. Working out affordable secure solutions for Indian consumers will become a catalyst for innovation as we move along,” said Nikhil Bandi, senior VP and CISO, Vistaar Financial Services Private Limited.
The 2017 Cloud Security Spotlight Report indicates that 76 per cent of organisations are piloting, implementing or already operating on the cloud, with 81 per cent of them concerned about cloud security. The need of the hour is an agile secure relation between development and operations.
Collectively, development, security, and operations are abbreviated as DevSecOps, which build security testing into the system. Automated analysis tools and IT intelligence are built into the cloud. Biswajit De, senior technical consultant, TrendMicro, feels that DevSecOps is more of a culture inculcated into the system in a loop-like manner for companies to be more agile.
“DevSecOps puts security as a process into the development cycle and makes organisations responsible for the entire lifecycle,” De said. “It is a means to provide the software development operation required to interact with customers in a quick and efficient manner. The entire process is facilitated through the adoption of cloud.
“Everything is consumption-based and security is moving towards meeting the emerging needs of consumption. This is why we have moved to cloud and automate process for security.”
The growth of the cloud ecosystem is healthy and the time is right to build a workforce comprising of certified cloud security professionals. However, it is also a challenge to choose the right cloud service provider (CSP).
“We provide cloud evaluation as a service, which is a methodology to select the best-fit CSP,” highlighted Vikas Mathur, co-founder, RightCloudz Technologies LLP. “The process is based on quantifiable methods and is vendor neutral. The challenge lies in gathering the intelligence and implementing and customising it from security and business point of view.”
Formal cloud migration strategy is a global trend and India is no exception. CSPs are confronted with companies whose concerns stem from complete protection, to control monitoring, to compliance requirements. Often, it is found that the customer application requirements are diverse. It then becomes essential for CSPs to get into the details of the architecture, perform mapping and use its intelligence for back-end solutions. All this combines to provide the solution.
The spotlight is on information security leaders with technical knowledge about cloud and skills.