Now on Demand Ransomware Resilience & Recovery Summit - All Sessions Available
Connect with us

Hi, what are you looking for?


Cloud Security

SMBs Find Security, Reliability Benefits in Cloud: Survey

Small to medium sized businesses (SMBs) remain concerned about the security, privacy, and reliability of cloud applications, but they quickly see the benefits once they make the actual jump, according to a Microsoft survey.

Small to medium sized businesses (SMBs) remain concerned about the security, privacy, and reliability of cloud applications, but they quickly see the benefits once they make the actual jump, according to a Microsoft survey.

In a study looking at how small and medium-sized businesses viewed security, privacy, and reliability in the cloud, 94 percent of US businesses said their security had improved after adopting cloud applications, Tim Rains, director of the Trustworthy Computing group at Microsoft, told SecurityWeek. The improvements included staying up-to-date with patches, better anti-spam filters, and up-to-date antivirus protection.

However there was a clear gap between the perceptions of those not using the cloud, with the real experiences of those already invested in a cloud service, Rains said. Nearly 60 percent of SMBs not using cloud applications were concerned about data security. About 42 percent of SMBs who haven’t moved to the cloud said they were concerned about reliability.

Cloud Computing Benefits to SMBsWhat SMBs were worried about when it came to security, privacy, and reliability of the cloud contradicted the actual experiences after adopting the cloud, Rains said.

Of the businesses using on-premise products, 45 percent were concerned that using the cloud would result in less control over their data, Rains said. In contrast, 62 percent of cloud-adopters said their levels of privacy protection increased.

About 32 percent of the on-premise respondents would be more likely to consider cloud adoption if there were industry standards for cloud security, according to the survey.

Three-quarters of the businesses said service availability improved since moving to the cloud. About 73 percent said they were more confident in the integrity of their data using the cloud service. Nearly all, or 91 percent, of the SMBs using the cloud said their cloud provider made it easier for them to satisfy compliance requirements. This is in stark contrast to the 39 percent of on-premise users who said compliance requirements barred them from using cloud applications.

Approximately half of the businesses who were using software-as-a-service said they saved time managing IT, and 43 percent said they wished they’d made the jump to the cloud sooner.

“At the risk of sounding somewhat corny, we found several silver linings in the realities of people’s experiences after moving to a cloud solution,” Adrienne Hall, general manager of the Trustworthy Computing group at Microsoft, wrote on the TwC blog.

Advertisement. Scroll to continue reading.

About 70 percent of cloud adopters said they had reinvested the savings in other areas, such as product development and innovation, marketing, and expanding into new markets, Microsoft said.

The study looked at businesses in four geographic areas, Germany, the United Kingdom, France, and the United States. From each region, a little over 100 businesses who were using the cloud, and 100 who were not, were asked to discuss their perceptions of cloud.

Rains said the responses across geographies were surprisingly consistent.

The study was a double blind study; Microsoft does not know what cloud platforms the respondents used and the respondents did not know it was a Microsoft-commissioned study. Market research company comScore conducted the study.

Microsoft also released an updated version of its free Cloud Security Readiness Tool, which now covers industry standards including European Network and Information Security Agency Information Assurance Framework (ENISA IAF) and British Standards Institution (BSI).

The results from the cloud trust study can be found here in PDF format.

Written By

Click to comment


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

MSSP Dataprise has appointed Nima Khamooshi as Vice President of Cybersecurity.

Backup and recovery firm Keepit has hired Kim Larsen as CISO.

Professional services company Slalom has appointed Christopher Burger as its first CISO.

More People On The Move

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

CISO Conversations

SecurityWeek talks to Billy Spears, CISO at Teradata (a multi-cloud analytics provider), and Lea Kissner, CISO at cloud security firm Lacework.

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to and Exchange Online.

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.

Cloud Security

Microsoft and Proofpoint are warning organizations that use cloud services about a recent consent phishing attack that abused Microsoft’s ‘verified publisher’ status.