Zero trust is top cloud security priority for next year, research finds

Middle East cloud security professionals have identified zero trust as the number one cloud security priority for the next year, according to a recent survey.

The ‘Future of Cloud Security in the Middle East‘ report found that 56 per cent of regional cloud security experts would prioritise zero trust strategies, followed by data and privacy best practices at 43 per cent. Regulatory compliance was a close third at 42 per cent.

The white paper surveyed 584 cloud security professionals across the region. It was launched by Dr Mohamed Al-Kuwaiti, head of Cybersecurity for the UAE Government, at the Cybersecurity Innovation Series (CSIS) 2023 in Dubai. The report is endorsed by the UAE Cyber Security Council and OIC-CERT and sponsored by Huawei.

Highlights

The research highlighted the Middle East unanimously adopting a cloud-first strategy, with “non-cloud” environments almost non-existent today.

Cloud is viewed as the quintessential baseline platform for adopting other deep technologies, such as artificial intelligence, blockchain and internet of things.

More importantly, the report also highlighted the flexibility of cloud solutions with the ability to adapt cloud on a case-by-case basis, where we are seeing a trend for both sovereign and hybrid clouds to be weaved together into national or regional multi-cloud strategies to unleash the potential of the digital economy.

While cloud is a core part of any digital strategy, the report also uncovered key trends in cybersecurity and privacy protection technical controls.

A total of 43 per cent of respondents mentioned that security is the most important factor in their decision-making when choosing a cloud provider. As for their plans to implement more to protect their data on the cloud, respondents overwhelmingly picked multi-factor authentication as a key objective, followed by encryption and staff training, both at 32 per cent. The report also revealed the declining relevance of passwords as a cybersecurity strategy, with only 16 per cent of respondents saying they would aggressively pursue a pass-word strategy.

Speaking during the launch, Dr Al Kuwaiti, also the OIC-CERT Cloud Security Working Group’s co-chair, emphasised that cybersecurity is critical to national security and called for a proactive approach to safeguarding digital infrastructure and protecting sensitive data. He highlighted various policies the UAE has adopted to protect data, including a cloud-first model that first man-dates all sensitive data be routed through the cloud to guard against DDOS attacks.

Dr Al Kuwaiti’s speech emphasised the significance of public-private partnerships in combating cyberthreats, stressing the importance of collaboration between government institutions. “I would like to say a special thanks to Huawei for working with us on many of our initiatives, in-cluding on the release of the white paper,” he added.

Moreover, he underscored the role of individuals in promoting cybersecurity. He encouraged responsible online behaviour, stressing the need for bilateral and multilateral collaboration.

Additionally, he highlighted the importance of cybersecurity education and awareness campaigns to empower individuals with the knowledge to protect themselves, contribute to a secure digital environment, and reduce outbreaks of cybercrime.

“We need to build a cybersecurity culture, identifying what information to share and what not to share. The white paper identifies various measures that need to be taken and implemented to elevate cybersecurity posture,” he added.

Huawei Cloud strategy

Huawei Cloud has established a cybersecurity and privacy protection management system based on multiple mainstream international security standards and developed cybersecurity and compliance standards applicable to the cloud field  Today, it has been certified by more than 120 authoritative organisations.

Dr Aloysius Cheang, chief security officer, Huawei Middle East and Central Asia, said: “Cloud is the foundation for the digital economy and pivotal to realizing the national visions of Middle East countries. However, the threat of cyber-attacks remains a clear and present danger. But through the efforts of stakeholders working together, we can demonstrate that a safe cyber-space is possible. We appreciate the collaborative efforts of the UAE government in releasing this white paper and look forward to even more successful partnerships.”

Huawei believes that cybersecurity is a shared responsibility. Cybersecurity challenges must be addressed through technological innovation, knowledge sharing, standards development, verification and other internationally credited measures. Working with partners, Huawei has a proven track record in cybersecurity globally.

Read: Huawei Cloud highlights the benefits of ‘everything as a service’ model to boost digital transformation