Cloud governance, compliance and security policies are top inhibitors for organizations looking to adopt the cloud this year, according to a study by Arlington, VA-based developer Stacklet.
The survey included over 700 IT professionals, developers and solutions architects from a cross-section of mid-to large-size companies in industries such as software, financial services, government and computers.
More than half of the respondents (57%) are prioritizing cost controls and optimization while 48% of the respondents are looking to strengthen their cloud security posture while implementing industry best practices (51%).
Cloud governance is a framework of policies, procedures, and tools focused on ensuring cloud deployments are operating securely and efficiently. While deemed necessary, organizations struggle to collaborate on and enforce governance policies without hindering developer velocity to multiple tools, manual workflows, and cross-functional groups, according to Stacklet.
Almost half (46%) of the surveyed organizations find it challenging to collaborate across developer, operations and security teams to implement security policies. Similarly, over one-third (36%) highlighted collaboration across finance, business and development teams for cost control policies as a challenge.
In addition to lack of collaboration, respondents selected the varied choice of deployment tools used by development teams (39%) and lack of visibility into resources (38%) as critical challenges to controlling and optimizing spend in the cloud.
Governance as code is a new framework that enables organizations to use code to manage and automate various aspects of governance, including cost, operations, security, and compliance.
Organizations are shifting to this paradigm to reduce the operational overhead of traditional governance tools and processes, according to Stacklet. Governance as code also encourages continuous collaboration and establishes agility by providing a standard, declarative language that different stakeholders can easily understand and adopt.
“As more and more companies are starting to increase their cloud usage, cloud security and cost management has become critical,” said Travis Stanfield, co-founder and CEO, Stackle, in a statement. “This research shows organizations are lacking proper governance and collaboration across various groups from engineering to finance, making it challenging for organizations to enforce the right policies and control costs. By adopting cloud governance as code model organizations can remove the friction associated with traditional tooling and processes while innovating securely in the cloud.”