Cloud-Delivered Security

Cloud-Delivered Security is security technologies designed to protect critical infrastructure, applications, and data delivered as-a-service from the cloud as opposed to being installed and maintained on-prem.


Cloud-delivered, also referred to as security-as-a-service is used to secure and monitor critical infrastructure, applications, and data that exists in both the on-prem and cloud environments of an organization. Cloud-delivered can be easier to implement and maintain since the enterprise that delivers the technology is responsible for updates and maintenance. Moreover, it can also be less expensive to acquire upfront as it’s usually sold on a subscription basis, where payments are spread out over time. (By contrast, on-prem solutions typically involve a large one-time payment upfront for an appliance or software.) Cloud-delivered security also has the advantage of more closely matching the high elasticity of cloud environments, so capacity can more dynamically scale up or down based on growing needs. While cloud-delivered security does have some advantages compared to on-prem security, it also has some drawbacks. These include less functionality, different considerations about the privacy of the technology being delivered (since a third party manages it), and possible data residency and compliance issues. Organizational demand for cloud-delivered formats of security differs by segment.  At one end of the spectrum, some Identity Access Management (IAM) functionality and email security are commonly delivered via the cloud.  By contrast, firewall technology (or firewall-as-a-service) has so far been relatively slow to move to cloud delivery.


Seeking Clarity?

View the Cybersecurity Dictionary for top terms searched by your peers.