Time to re-check your cloud configuration settings
While cloud security offers many advantages over on-premises data storage, users are responsible for managing security configurations to the cloud, which increases the risk of fraud.
Users should not use default security settings unless they have been fully tested by security staff. Cloud compromises are most often due to mistakes, oversights, or untested cloud configurations, not the cloud environment itself.
As we near the closing of the fiscal year, it is a good time to review and test any cloud configurations in place to ensure they are as strong as possible. Vendors are available to public entities on the ITS78 Statewide Contract for an independent review of your cloud configurations, or any other cyber and security-related needs.
See our CTR Cyber page for more cybersecurity internal controls and contact [email protected] with any incidents or suspected incidents of fraud or cyber threats or if you need support from our Statewide Risk Management Team.
State agencies, please see our recent Close/Open video on Cyber Risks, Mitigation, Banking Changes, and other Protections.