Welcome!

@CloudExpo Authors: Pat Romanski, Liz McMillan, Elizabeth White, William Schmarzo, Yeshim Deniz

Related Topics: @CloudExpo, Microservices Expo, Containers Expo Blog, Cloud Security, @BigDataExpo, SDN Journal

@CloudExpo: Article

Selecting Cloud Security Brokers: 'All-in-One' or 'Best-of-Breed'?

A solution that 'concentrates on robust functionality' in a critical new area or an offering that’s a 'mile wide & inch deep'?

When we set out to build the PerspecSys Cloud Data Control Gateway, we faced an important design decision: would the market prefer an "All-in-One" or a "Best-of-Breed" Cloud Security Broker?

In the "All-in-One" camp, IT professionals have come to learn that the bundled modules from a single vendor have significant gaps in features that frequently lead to critical capability holes with implications ranging from operational scalability to compliance and security. Failing to address these shortcomings can be devastating for companies, potentially leading to financial loss and brand damage. This is because "All-in-One" products tempt enterprises by offering multiple solutions, many of which the customer was not even considering using. Most of these complimentary modules do not make any of the industry-validated lists (e.g., Gartner Magic Quadrants) for capability or quality, and as a result are frequently not even mentioned in research or analyst rankings.

Most organizations we talk to have already decided on their enterprise requirements, and made their selections of robust Encryption and Key Management, Single Sign-on (SSO), Malware Detection, Secure Web Gateway (SWG), Data Loss Prevention (DLP), and so on as they tackled these issues in the maturation of their security infrastructure. For example, CIOs tell us "don't give me another encryption system to manage" - they share with us that they want to maximize their existing IT investments and deploy the encryption modules they have vetted and trust from their preferred vendors within our Cloud Data Control Gateway solution.

When Cloud applications were used experimentally or with low value corporate information, having weaker solutions acting as the security umbrella was perhaps not as important. However, as these applications scale to meet enterprise needs and the cloud is forced to handle increasingly important (and sensitive) information, they need to fit with the trusted security approaches already deployed within the enterprise's ecosystem.

As the enterprise Cloud Security Broker space has evolved and organizations began defining reference architectures, cloud computing and interoperability standards, this has made it financially and operationally viable for an enterprise to choose the world's best product/service for each of their critical needs - for every user and for every use case. Organizations no longer had to sacrifice functionality and inferior products for the sake of integration.

When we researched this and considered the data, "Best-of-Breed" become the obvious answer to PerspecSys, which provides an open framework to our ApprotexTM Cloud Data Control Gateway platform to plug in third-party enterprise components. And here's why:

  • Leverage existing IT investments: Lower cost, proven performance, well vetted within the organization and the industry. This leads to operational efficiencies and expanded field of use, as enterprises reduce/optimize the number of systems that do the same thing.
  • Feature rich: The best-of-breed components from specialized vendors deliver deep capabilities that lead to increased productivity and efficiency.
  • Ease of implementation: IT products are likely already deployed and in use from specialty vendors who, through focus, are more agile. With Best-of-Breed there is no need to deploy the same technologies as those already deployed (and trained on) within IT.
  • Future proof: Minimize functional gaps in the future as each specialized vendor continues to innovate and add rich capabilities.
  • Improved interoperability: Best-of-Breed "independence" requires flexibility to integrate into other systems. The cloud, with its open, flexible SOA-based (service-oriented architecture) application means that integration is far easier and less expensive to manage. Cloud software is built to integrate, interoperate and exchange information.
  • Better support: Each vendor brings deep expertise in their chosen area, giving the enterprise options in how to maximize their capabilities as a consequence. The Best-of-Breed approach is significantly more flexible and changeable over time. You can upgrade individual components without impacting other functions. Plus, as new technologies emerge they can be integrated into the overall solution.
  • No vendor lock-in: You can choose to replace a module if it becomes too expensive, obsolete, or integrity is compromised. In the end, the enterprise is not forced to accept inferior solutions.

As enterprises make their Cloud Data Control Gateway decisions, will they be choosing based on a "sharp focus on a core competency" or will it be based on a "boiling the ocean" approach? A solution that "concentrates on robust functionality" in a critical new area or an offering that's a "mile wide & inch deep"? A package that "plays nice" with the enterprise security ecosystem or one that tries to replicate existing specialized security products and creates friction? Organizations that yearn for freedom of choice and the flexibility to create their own suite of "Best-of-Breed" products from any number of vendors, their time is here.

Read the original blog entry...

More Stories By David Canellos

David Canellos is a security veteran who is now President and CEO of PerspecSys. An entrepreneur specializing in bringing innovative security and privacy solutions to market, he has been instrumental in establishing PerspecSys as the leader in the Cloud data Protection Gateway market.

Before joining PerspecSys, David held executive positions at Irdeto Worldwide, which acquired the company he led, Cloakware, which was a pioneer in encryption and digital rights management. Before joining Cloakware, he was the General Manager and Vice President of Sales for Cramer Systems (now Amdocs), a UK-based company, where he was responsible for the company’s revenue and operations in the Americas. Prior to his work with Cramer, David held a variety of executive, sales management and business development positions with the Oracle Corporation, Versatility and SAIC.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


@CloudExpo Stories
In his session at 20th Cloud Expo, Mike Johnston, an infrastructure engineer at Supergiant.io, discussed how to use Kubernetes to set up a SaaS infrastructure for your business. Mike Johnston is an infrastructure engineer at Supergiant.io with over 12 years of experience designing, deploying, and maintaining server and workstation infrastructure at all scales. He has experience with brick and mortar data centers as well as cloud providers like Digital Ocean, Amazon Web Services, and Rackspace. H...
The question before companies today is not whether to become intelligent, it’s a question of how and how fast. The key is to adopt and deploy an intelligent application strategy while simultaneously preparing to scale that intelligence. In her session at 21st Cloud Expo, Sangeeta Chakraborty, Chief Customer Officer at Ayasdi, will provide a tactical framework to become a truly intelligent enterprise, including how to identify the right applications for AI, how to build a Center of Excellence to ...
You know you need the cloud, but you’re hesitant to simply dump everything at Amazon since you know that not all workloads are suitable for cloud. You know that you want the kind of ease of use and scalability that you get with public cloud, but your applications are architected in a way that makes the public cloud a non-starter. You’re looking at private cloud solutions based on hyperconverged infrastructure, but you’re concerned with the limits inherent in those technologies.
SYS-CON Events announced today that Massive Networks will exhibit at SYS-CON's 21st International Cloud Expo®, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Massive Networks mission is simple. To help your business operate seamlessly with fast, reliable, and secure internet and network solutions. Improve your customer's experience with outstanding connections to your cloud.
DevOps is under attack because developers don’t want to mess with infrastructure. They will happily own their code into production, but want to use platforms instead of raw automation. That’s changing the landscape that we understand as DevOps with both architecture concepts (CloudNative) and process redefinition (SRE). Rob Hirschfeld’s recent work in Kubernetes operations has led to the conclusion that containers and related platforms have changed the way we should be thinking about DevOps and...
As businesses adopt functionalities in cloud computing, it’s imperative that IT operations consistently ensure cloud systems work correctly – all of the time, and to their best capabilities. In his session at @BigDataExpo, Bernd Harzog, CEO and founder of OpsDataStore, presented an industry answer to the common question, “Are you running IT operations as efficiently and as cost effectively as you need to?” He then expounded on the industry issues he frequently came up against as an analyst, and ...
SYS-CON Events announced today that Datera, that offers a radically new data management architecture, has been named "Exhibitor" of SYS-CON's 21st International Cloud Expo ®, which will take place on Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Datera is transforming the traditional datacenter model through modern cloud simplicity. The technology industry is at another major inflection point. The rise of mobile, the Internet of Things, data storage and Big...
Everything run by electricity will eventually be connected to the Internet. Get ahead of the Internet of Things revolution and join Akvelon expert and IoT industry leader, Sergey Grebnov, in his session at @ThingsExpo, for an educational dive into the world of managing your home, workplace and all the devices they contain with the power of machine-based AI and intelligent Bot services for a completely streamlined experience.
Because IoT devices are deployed in mission-critical environments more than ever before, it’s increasingly imperative they be truly smart. IoT sensors simply stockpiling data isn’t useful. IoT must be artificially and naturally intelligent in order to provide more value In his session at @ThingsExpo, John Crupi, Vice President and Engineering System Architect at Greenwave Systems, will discuss how IoT artificial intelligence (AI) can be carried out via edge analytics and machine learning techn...
FinTechs use the cloud to operate at the speed and scale of digital financial activity, but are often hindered by the complexity of managing security and compliance in the cloud. In his session at 20th Cloud Expo, Sesh Murthy, co-founder and CTO of Cloud Raxak, showed how proactive and automated cloud security enables FinTechs to leverage the cloud to achieve their business goals. Through business-driven cloud security, FinTechs can speed time-to-market, diminish risk and costs, maintain continu...
Existing Big Data solutions are mainly focused on the discovery and analysis of data. The solutions are scalable and highly available but tedious when swapping in and swapping out occurs in disarray and thrashing takes place. The resolution for thrashing through machine learning algorithms and support nomenclature is through simple techniques. Organizations that have been collecting large customer data are increasingly seeing the need to use the data for swapping in and out and thrashing occurs ...
As many know, the first generation of Cloud Management Platform (CMP) solutions were designed for managing virtual infrastructure (IaaS) and traditional applications. But that’s no longer enough to satisfy evolving and complex business requirements. In his session at 21st Cloud Expo, Scott Davis, Embotics CTO, will explore how next-generation CMPs ensure organizations can manage cloud-native and microservice-based application architectures, while also facilitating agile DevOps methodology. He wi...
SYS-CON Events announced today that CA Technologies has been named "Platinum Sponsor" of SYS-CON's 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. CA Technologies helps customers succeed in a future where every business - from apparel to energy - is being rewritten by software. From planning to development to management to security, CA creates software that fuels transformation for companies in the applic...
From 2013, NTT Communications has been providing cPaaS service, SkyWay. Its customer’s expectations for leveraging WebRTC technology are not only typical real-time communication use cases such as Web conference, remote education, but also IoT use cases such as remote camera monitoring, smart-glass, and robotic. Because of this, NTT Communications has numerous IoT business use-cases that its customers are developing on top of PaaS. WebRTC will lead IoT businesses to be more innovative and address...
Blockchain is a shared, secure record of exchange that establishes trust, accountability and transparency across business networks. Supported by the Linux Foundation's open source, open-standards based Hyperledger Project, Blockchain has the potential to improve regulatory compliance, reduce cost as well as advance trade. Are you curious about how Blockchain is built for business? In her session at 21st Cloud Expo, René Bostic, Technical VP of the IBM Cloud Unit in North America, will discuss th...
While some vendors scramble to create and sell you a fancy solution for monitoring your spanking new Amazon Lambdas, hear how you can do it on the cheap using just built-in Java APIs yourself. By exploiting a little-known fact that Lambdas aren’t exactly single-threaded, you can effectively identify hot spots in your serverless code. In his session at @DevOpsSummit at 21st Cloud Expo, Dave Martin, Product owner at CA Technologies, will give a live demonstration and code walkthrough, showing how ...
SYS-CON Events announced today that CA Technologies has been named “Platinum Sponsor” of SYS-CON's 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. CA Technologies helps customers succeed in a future where every business – from apparel to energy – is being rewritten by software. From planning to development to management to security, CA creates software that fuels transformation for companies in the applic...
Cloud adoption is often driven by a desire to increase efficiency, boost agility and save money. All too often, however, the reality involves unpredictable cost spikes and lack of oversight due to resource limitations. In his session at 20th Cloud Expo, Joe Kinsella, CTO and Founder of CloudHealth Technologies, tackled the question: “How do you build a fully optimized cloud?” He will examine: Why TCO is critical to achieving cloud success – and why attendees should be thinking holistically ab...
Internet of @ThingsExpo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devic...
As more and more companies are making the shift from on-premises to public cloud, the standard approach to DevOps is evolving. From encryption, compliance and regulations like GDPR, security in the cloud has become a hot topic. Many DevOps-focused companies have hired dedicated staff to fulfill these requirements, often creating further siloes, complexity and cost. This session aims to highlight existing DevOps cultural approaches, tooling and how security can be wrapped in every facet of the bu...