1、12022 SANS Survey:Securing Infrastructure OperationsCustom Survey2022 SANS Survey:Securing Infrastructure OperationsWritten by Matt BromileyMarch 20222022 SANS Institute22022 SANS Survey:Securing Infrastructure OperationsIntroductionEvery day,organizations are migrating more and more of their infras

2、tructure to cloud providers and cloud-based assets.For business operations,this transition makes sense.Cloud assets are easier to deploy and allow for rapid development cycles.Cloud resources enable an organization to quickly scale to meet operational and/or customer needs.However,embracing a cloud

3、infrastructure can pose a significant risk to an organization.As more and more cloud assets are spun up,an organizations risk profile growssometimes exponentially,depending on the risk profile of cloud assets.Consider,for example,an open storage bucket full of anonymous data versus an insecure web a

4、pplication tied directly into an organizations domain infrastructure.Which situation would you rather face as a security analyst?In this survey,our inaugural investigation into this topic,we wanted to tackle this exact issue:What does an enterprise cloud presence look like,and how are our respondent

5、s going about securing their assets?A cloud presence is an opportunity for both adversaries and administrators alikeand unfortunately the security team gets left pushing the advantage around the board.As we read through our survey results,we identified the following notable takeaways for you to cons

6、ider:Enterprise cloud footprints and infrastructure are growingand security teams are often having trouble keeping up with these changes.Approximately 74%of security teams are trained about the differences between cloud and non-cloud security response.More than half of our survey respondents have mo