“Another critical aspect [of multi-cloud security] is that multi-cloud means that an organization will want to be able to move workloads between clouds, and when that happens, not be required to reconfigure the entire security toolset,” says Amir Jerbi, co-founder and CTO at Aqua Security. “One factor to consider is that cloud-provider-specific settings should be made as generic as possible so they are easy to ‘translate’ between clouds – for example, role-based access control (RBAC) policies.”
Jerbi also points out that this is another utility of containers in multi-cloud settings, from both a portability and a security standpoint.
“Another approach is to place security controls as close as possible to the workloads – for example, organizations running containers can implement security controls around container image scanning, trusted image policies, and runtime protection measures that are completely cloud-agnostic.”
