The results showed that a large portion of the respondents, as much as 78%, plan to increase the number of cloud apps in their organisations this year. What was even more surprising and indicative of things to come was that as many as 71% of the respondents admitted to be using one form of cloud application or the other, without sanction by their respective IT departments. About 200 IT and business professionals within organisations of all sizes and industries were quizzed as part of this survey.
“This demonstrates that 2013 will be a tipping point in cloud adoption,” said Thomas Pedersen, Chief Executive Officer of OneLogin. “With enterprises rapidly turning to cloud apps, the inherent risks in practices like using unsanctioned apps or sharing passwords on sticky notes need to be addressed, and quickly.”
The San Francisco, USA based OneLogin is the innovator in enterprise identity management and provides comprehensive solutions for managing user identities in the cloud and behind the ﬁrewall. Among other things, it provides the single, sign-on capability for iPad. The company also provides federated cloud search.
The main aim of the State of the Cloud App Access Survey was to collect the views of IT and business people regarding the pace of cloud application adoption and usage. Access to most of such apps was taking place from a variety of locations including smartphones (80%), tablets (71%) and non-company computers (80%) and with a large percentage of organizations (73%) needing to grant temporary access to cloud apps, respondents cited concerns around identity management, governance and complexity.
Here’s more on what the survey found:
Unsafe password management: 43% of respondents admitted that employees managed passwords in spreadsheets or on sticky notes and 34% share passwords with their co-workers for applications like FedEx, Twitter, Staples and LinkedIn. 20% experienced an employee still being able to login after leaving the company.
Single sign-on challenges: 48% of respondents were still unable to sign in to cloud applications with a single set of credentials.
Need to provision external users: 72% of the respondents had the need to provide external users (i.e. consultants) with temporary access to the company’s cloud applications.
Complex directory infrastructures: 59% of respondents had multiple on-premise directories with Active Directory being cited as the most used directory (40%), followed by LDAP (17%) for managing user identities and application access.
Different security model for cloud application access: 34% of respondents claimed that their security model for cloud applications was different than for on-premise applications vs. 45% claiming it’s the same.
“It is no secret that cloud apps need solutions added to improve their security; yet to see 20% of app users admit a breach by ex-employees is still a surprisingly high result,” felt Davi Ottenheimer, President of flyingpenguin. “The real story behind the 80% already using cloud apps already is that 70% admit apps came without company approval. In 2013, organizations will need solutions flexible enough to support the 60% with more than four apps already in use, and scalable enough to keep up with the 35% who plan to add at least four new apps this year.”
200 people completed the web-based survey which was open between December 7th, 2012 and January 7th, 2013. Respondents were primarily in an IT Leadership role (40%), Business/Operations (23%) or members of the IT Staff (21.50%).
ﬂyingpenguin is a security consultancy, designs and assesses risk mitigation and response solutions as well as delivers strategic and competitive knowledge to security software and hardware vendors.
[Image Credits: OneLogin]