arrow-right cart chevron-down chevron-left chevron-right chevron-up close menu minus play plus search share user email pinterest facebook instagram snapchat tumblr twitter vimeo youtube subscribe dogecoin dwolla forbrugsforeningen litecoin amazon_payments american_express bitcoin cirrus discover fancy interac jcb master paypal stripe visa diners_club dankort maestro trash

Shopping Cart

Enterprises Struggle to Secure AI and Cloud Technologies: Insights from the 2025 Thales Cloud Security Study

by

'2 måneder siden'

Table of Contents

  1. Key Highlights:
  2. Introduction
  3. The Convergence of AI and Cloud: A Risk Amplifier
  4. The State of Cloud Security Investments
  5. Tool Sprawl: A Compounding Challenge
  6. The Threat Landscape: Growing Risks and Attacks
  7. Bridging the Security Gap: Strategic Recommendations
  8. The Road Ahead: Evolving Security Strategies
  9. FAQ

Key Highlights:

  • The 2025 Thales Cloud Security Study reveals that enterprises are struggling to keep their security strategies aligned with the complexities of multicloud environments and AI demands.
  • A significant 64% of organizations prioritize cloud security, while 52% report that AI security investments are overshadowing traditional security measures.
  • The study indicates that 85% of organizations classify at least 40% of their cloud data as sensitive, yet only a small fraction is fully encrypted.

Introduction

As organizations increasingly embrace cloud computing and artificial intelligence (AI), the need for robust security measures has never been more pressing. The 2025 Thales Cloud Security Study lays bare the challenges enterprises face in securing their data amidst a rapidly evolving digital landscape. With a growing reliance on multicloud infrastructures and software-as-a-service (SaaS) applications, security teams find themselves grappling with operational complexities, fragmented tools, and a surge in sensitive data. This article delves into the key findings of the Thales report, highlighting the urgent need for enterprises to rethink their security strategies to mitigate risks and safeguard their assets.

The Convergence of AI and Cloud: A Risk Amplifier

The intersection of AI and cloud technologies is reshaping how businesses operate but also amplifying security risks. Organizations are increasingly leveraging AI to process vast amounts of data stored in the cloud, which presents unique challenges. According to the Thales report, many enterprises have yet to implement cohesive encryption or access controls necessary to protect sensitive information flowing through AI systems.

This lack of consistent security measures is concerning, especially considering that the risks are not merely hypothetical. The study indicates that four out of five most-targeted assets in recent cyberattacks are cloud-based. The rapid expansion of cloud services, driven by AI initiatives, has outpaced the development of comprehensive security strategies, leaving organizations vulnerable to breaches and attacks.

The State of Cloud Security Investments

The Thales study surveyed nearly 3,200 security and IT professionals to understand the current landscape of cloud security. The findings reveal that cloud security remains a top investment priority, with 64% of respondents ranking it among their top five concerns. AI security, a new category introduced this year, ranks second, with 52% of organizations noting that investments in AI security are replacing traditional security expenditures.

This shift in focus underscores a fundamental transformation in how organizations perceive threats. As enterprises juggle the dual challenges of securing cloud environments while integrating AI solutions, many are reallocating resources to address the pressing needs posed by these technologies. However, this transition isn't without difficulties. Organizations are often left with fragmented security policies that fail to adapt to hybrid environments, leading to increased risk exposure.

Tool Sprawl: A Compounding Challenge

One of the significant findings of the Thales study is the pervasive issue of tool sprawl within organizations. The average enterprise utilizes approximately 2.1 public cloud providers and 85 SaaS applications, which can create a convoluted security landscape. Strikingly, 61% of respondents reported using five or more tools for data discovery or classification, while over half employed multiple encryption key managers unique to each cloud provider.

This fragmentation not only complicates data management but also heightens the risk of human error. As teams navigate a myriad of tools with varying functionalities, the lack of a unified security approach can lead to oversights that may have dire consequences. For example, misconfigured tools can inadvertently expose sensitive data, making them prime targets for cybercriminals.

The Threat Landscape: Growing Risks and Attacks

The Thales report does not shy away from addressing the stark reality of the current threat landscape. Stolen credentials and secrets have emerged as the fastest-growing attack vector, according to 68% of respondents. Alarmingly, only 65% of organizations have implemented multifactor authentication (MFA) to safeguard against unauthorized access.

As the digital footprint of organizations expands, the volume of sensitive data stored in cloud environments has surged. The study found that 85% of organizations now classify at least 40% of their cloud data as sensitive, a notable increase from previous years. Yet, despite the heightened sensitivity of this data, a mere fraction of it is fully encrypted, revealing a significant gap in data protection protocols.

Bridging the Security Gap: Strategic Recommendations

To address these pressing security challenges, organizations must adopt a proactive approach to data protection. Sebastian Cano, senior vice president for cybersecurity products at Thales, emphasizes the need for enterprises to embed strong data protection measures into the core of their digital infrastructure. Here are some strategic recommendations to enhance cloud security:

  1. Implement Cohesive Security Policies: Organizations must develop and implement unified security policies that align with both cloud and AI initiatives. This includes establishing consistent encryption standards and access controls across all cloud environments.
  2. Invest in AI Security Solutions: As AI becomes increasingly integral to business operations, investing in specialized AI security solutions is critical. These solutions should be designed to protect against unique threats associated with AI, including data poisoning and adversarial attacks.
  3. Simplify Tool Management: To combat tool sprawl, organizations should aim to streamline their security toolsets. Consolidating tools and adopting integrated security platforms can enhance visibility and reduce the risk of misconfigurations.
  4. Enhance User Education and Training: A significant portion of security breaches can be attributed to human error. Organizations should prioritize user education and training programs to ensure employees are aware of security best practices and the importance of safeguarding sensitive data.
  5. Regularly Assess Security Posture: Continuous monitoring and assessment of security measures are essential to identify vulnerabilities and adapt to evolving threats. Organizations should conduct regular security audits and penetration testing to evaluate their defenses.

The Road Ahead: Evolving Security Strategies

As enterprises navigate the complexities of cloud and AI technologies, the journey toward enhanced security is ongoing. The Thales report serves as a wake-up call for organizations to reevaluate their security strategies and invest in robust measures to protect their digital assets.

The convergence of AI and cloud presents both opportunities and challenges. By prioritizing security and adopting a holistic approach, organizations can not only safeguard their sensitive data but also position themselves as leaders in the digital economy. The future of enterprise security will depend on the ability to adapt and evolve in response to emerging threats and technological advancements.

FAQ

What is the Thales Cloud Security Study?
The Thales Cloud Security Study is an annual report that examines the state of cloud security and the challenges faced by organizations in securing their digital assets. The 2025 report highlights the complexities introduced by AI and multicloud environments.

Why is cloud security a top concern for enterprises?
Cloud security remains a top concern due to the increasing reliance on cloud services and the sensitivity of the data stored in these environments. With rising cyber threats and complexities, organizations must prioritize robust security measures.

How can organizations enhance their cloud security?
Organizations can enhance their cloud security by implementing cohesive security policies, investing in specialized AI security solutions, simplifying tool management, enhancing user education, and regularly assessing their security posture.

What are the main risks associated with AI and cloud convergence?
The convergence of AI and cloud technologies introduces risks such as misaligned security policies, tool sprawl, increased attack vectors, and vulnerabilities arising from the rapid expansion of sensitive data stored in cloud environments.

What role do human errors play in security breaches?
Human errors account for a significant portion of security breaches, often stemming from a lack of awareness or training regarding security best practices. Organizations must prioritize user education to mitigate these risks.