Navigating Cloud-Native Security: A Comprehensive Look at Challenges and Solutions

Cloud technology has revolutionized the way businesses operate in recent years, allowing for greater flexibility and scalability in operations. However, along with the benefits come significant challenges, particularly in regards to cloud security. As more organizations migrate their operations to the cloud, the need for robust security measures continues to grow.

SUSE, a global technology company specializing in open-source software, has conducted a comprehensive survey on cloud security, analyzing trends and concerns prevalent among businesses. The survey was presented at the annual SUSECON conference in Munich, and it provides insight into the experiences and expectations of IT professionals worldwide.

The prevalence of cloud security incidents

The survey reveals that cloud security incidents are widespread, with 88% of those surveyed experiencing at least one incident in the last 12 months. The types of cloud security incidents vary, with data breaches and account hijacking being the most common.

Cloud security concerns

Not surprisingly, data stores hosted by cloud vendors or third parties were the top cloud security concern, with nearly a third of respondents citing this as their primary concern. This is particularly relevant given that nearly all businesses store sensitive information such as intellectual property and client data in the cloud.

Budget allocation for cloud-native security

The individuals surveyed spent about 36% of their IT budget on cloud-native security, highlighting the growing awareness of the importance of adequate investments in cloud security infrastructure. Some popular security solutions include: anti-virus software, firewalls, intrusion detection and prevention systems, virtual private networks (VPN), security information and event management (SIEM) systems, and encryption technologies. Both security automation and container firewall were widely adopted, each accounting for 38% of the respondents. Antivirus solutions were also commonly used, being at 32%.

Future concerns regarding source code auditability

One third of the respondents said that increased re-evaluation and prioritization of goals related to source-code auditability would become a concern in the coming years. This trend is evidenced by the increase in high-profile supply chain attacks that have highlighted the risks inherent in poor software development practices.

SUSE’s Recognition of Digital Transformation and Open Source Solutions

SUSE’s chief technology and product officer, Dr. Thomas Di Giacomo, said, “At SUSE, we recognize that every business is on a journey of digital transformation. This transformation can be vastly accelerated by open-source solutions.” The survey results emphasize the importance of investing properly in security solutions for businesses as they continue to rely more on cloud technology.

Source code auditability and SBOM depth/quality/security are priorities

45% of US respondents placed a higher priority on source-code auditability, while 36% focused on SBOM depth/quality/security to ensure businesses meet supply chain security goals. In contrast, Germany and the UK were less concerned about source-code auditing (with just 23% and 26% of respondents prioritizing it, respectively), and they spent less on cloud-native security.

Comparison of spending priorities between cloud-native security and source code auditing

The survey indicates that there is a correlation between a business’s investment in cloud-native security and their prioritization of source code auditability. US businesses, which spend the most on cloud-native security, also prioritize source code auditability more highly than businesses in the UK and Germany. This highlights the need for proper investments in both cloud-native security solutions and software development practices to ensure comprehensive security in the cloud.

Conclusion and announcement of survey result

In conclusion, the SUSE survey provides valuable insight into the current state of cloud security, as well as the concerns and investment priorities of businesses worldwide. As organizations continue to migrate operations to the cloud, it is clear that proper investments in cloud-native security solutions and software development practices to ensure source-code auditability will be essential in maintaining robust cloud security.

The survey results highlight that SUSE is well-positioned to support businesses that choose secure open-source solutions for their most mission-critical and innovative workloads as they transform with the cloud. SUSE’s commitment to open-source solutions aligns with the growing trend of businesses seeking more secure and customizable cloud technology.

Explore more

Why Are Small Businesses Losing Confidence in Marketing?

In the ever-evolving landscape of commerce, small and mid-sized businesses (SMBs) globally are grappling with a perplexing challenge: despite pouring more time, energy, and resources into marketing, their confidence in achieving impactful results is waning, and recent findings reveal a stark reality where only a fraction of these businesses feel assured about their strategies. Many struggle to measure success or

How Are AI Agents Revolutionizing Chatbot Marketing?

In an era where digital interaction shapes customer expectations, Artificial Intelligence (AI) is fundamentally altering the landscape of chatbot marketing with unprecedented advancements. Once limited to answering basic queries through rigid scripts, chatbots have evolved into sophisticated AI agents capable of managing intricate workflows and delivering seamless engagement. Innovations like Silverback AI Chatbot’s updated framework exemplify this transformation, pushing the

How Does Klaviyo Lead AI-Driven B2C Marketing in 2025?

In today’s rapidly shifting landscape of business-to-consumer (B2C) marketing, artificial intelligence (AI) has emerged as a pivotal force, reshaping how brands forge connections with their audiences. At the forefront of this transformation stands Klaviyo, a marketing platform that has solidified its reputation as an industry pioneer. By harnessing sophisticated AI technologies, Klaviyo enables companies to craft highly personalized customer experiences,

How Does Azure’s Trusted Launch Upgrade Enhance Security?

In an era where cyber threats are becoming increasingly sophisticated, businesses running workloads in the cloud face constant challenges in safeguarding their virtual environments from advanced attacks like bootkits and firmware exploits. A significant step forward in addressing these concerns has emerged with a recent update from Microsoft, introducing in-place upgrades for a key security feature on Azure Virtual Machines

How Does Digi Power X Lead with ARMS 200 AI Data Centers?

In an era where artificial intelligence is reshaping industries at an unprecedented pace, the demand for robust, reliable, and scalable data center infrastructure has never been higher, and Digi Power X is stepping up to meet this challenge head-on with innovative solutions. This NASDAQ-listed energy infrastructure company, under the ticker DGXX, recently made headlines with a groundbreaking achievement through its