Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Cybersecurity In-Depth: Getting answers to questions about IT security threats and best practices from trusted cybersecurity professionals and industry experts.
The massive Amazon Web Services outage in December had many security leaders asking whether they should be going multicloud or multiregion for their cloud environments.
January 5, 2022
2 Min Read
Source: Wavebreakmedia, Ltd. via Alamy
Question: Which cloud strategy should I consider for my organization — multicloud or multiregion?
Ryan Sydlik, Security Engineer, Telos Corp.: The lesson to be learned from the AWS outage is that a multiregion strategy within a single cloud is effective and a multicloud strategy has no added benefit. The outage affected US-EAST-1 Northern Virginia, but it did not affect US-EAST-2 Ohio. A workload that is able to fail over, whether automatically or with some manual effort, would have been able to weather the outage. This also highlights the importance of disaster recovery testing. When an outage is relatively short like this AWS outage, if you are not confident in failover, you might not judge it to be worth the risk for a few hours. There is also another pitfall without proper testing: The region you are failing over to might be fine, but your workload might still fail to recover because of a misconfiguration or bug in your failover process that was not found due to a lack of testing.
A multicloud approach would have worked if properly implemented, too. However, it would be far more complicated than a multiregion strategy with failover testing, and it means that you have more exposure to cloud outages. You would not only have to worry about an AWS outage, but you would also have to worry about Azure or Google Cloud Platform (GCP) outages as well. And as costly as a multiregional strategy is within a single cloud provider, a multicloud strategy is more expensive by orders of magnitude.
For security, multiregion is better, though not for the reason you might think. You could argue that multiregion is more vulnerable in that it requires only one platform to be breached to get access to everything. But you could also argue that multicloud is more vulnerable due to the increased exposure caused by being in multiple platforms. In practicality, however, multiregion is better simply from a risk management perspective. Securing three cloud platforms requires more tools and more hard-to-find experts than one platform does, and it is already difficult for most organizations to secure just one platform. If security is viewed through a lens of risk, and risk is viewed through the lens of cost, multiregion wins.
About the Author(s)
Security Engineer, Telos
Ryan Sydlik joined Telos in 2019 and serves as a security engineer. He has 10 years’ experience in information technology, including cloud computing and cybersecurity in the government, healthcare, and financial sectors.
Ryan is a Certified Information Systems Security Professional (CISSP), AWS Certified Solutions Architect, and is ITIL-certified. He has a graduate degree from the University of Maryland and an undergraduate degree from the University of Notre Dame.
You May Also Like
Latest Articles in The Edge
Enterprises Worry End Users Will Be the Cause of Next Major BreachFeb 16, 2024|2 Min Read
10 Security Metrics Categories CISOs Should Present to the BoardFeb 14, 2024|6 Min Read
How Changes in State CIO Priorities for 2024 Apply to API SecurityFeb 12, 2024|4 Min Read
Why Demand for Tabletop Exercises Is GrowingFeb 8, 2024|5 Min Read