CipherCloud's Q2 2015 Global Cloud Data Security Report Highlights Cloud Encryption and Tokenization Trends in Financial Services

As headline grabbing hacks proliferate, financial institutions bank on data protection to limit exposure in the cloud

Jul 29, 2015, 09:00 ET from CipherCloud

SAN JOSE, Calif., July 29, 2015 /PRNewswire/ -- CipherCloud, a leader in cloud visibility and data protection, today releases its Q2 2015 Global Cloud Data Security Report. This quarter's report focuses on the strategies of over 50 global companies in banking, investment, wealth management and other areas of financial services use to protect sensitive data in the cloud. The takeaways provide real world tested guidance for other enterprises as they assess their options for protecting information against a potential data breach.

The adoption of the cloud continues to grow rapidly with Gartner forecasting $282 billion in spending by 2018. "As financial services adopt the cloud, strict compliance regulations and corporate policies push them to be early adopters of security technologies," said Pravin Kothari, founder and CEO, CipherCloud. "At the same time, the influence of cloud has upped the ante for financial services firm CISOs and their teams. As these companies increase their cloud adoption, they are building data protection in the cloud with the help of innovative encryption and tokenization technologies. Both regulatory scrutiny and the pace of data breaches compel the increased protection of their sensitive information."

Overall, the results from more than 50 global banking and financial services firms across North America, Europe, Asia Pacific and Latin America indicate that they are aggressively adopting and proactively securing data in the cloud. For instance, nearly 100 percent of the firms in our study put personally identifiable data, such as names, addresses and phone numbers in the cloud. 33 percent use the cloud to store highly sensitive PIIs such as social security numbers, birth dates, tax IDs, etc. 47 percent use the cloud to process personal finance data and 53 percent have business confidential data in the cloud. Each firm in our study uses one or some combination of data protection technologies, such as encryption or tokenization, to protect these various categories of sensitive data. These findings debunk the notion that financial institutions shy away from cloud and show that these firms are increasingly mature in their cloud data protection practices.

Key Findings on the State of Cloud Data Protection

  • 40 percent of firms with highly sensitive personal identifiable information choose tokenization for protection. As sensitivity of data goes up, so does the tendency of using tokenization and strong encryption schemes. Tokenization is used progressively less as the criticality of data decreases, indicating a preference for encryption when it comes to data that requires frequent search and sort functions.
  • 64 percent of firms use searchable encryption to protect sensitive data while supporting business workflows. Firms trade off searchability for security strength when the data is used in enterprise workflows to reference or index other information.
  • Format preserving is key for special structured data. Protecting data – such as email, URL, phone numbers, where the data has a specific recognizable format – requires format-preserving protection, above all other constraints.
  • Protecting sensitive data while supporting business operations is a balancing act. Depending on the nature of the data – format, sensitivity and business use cases – the enterprise may choose a very different protection scheme. Enterprises can leverage CipherCloud's data protection framework to make these complex decisions.

About CipherCloud:

CipherCloud, the leader in cloud security and visibility, enables companies to adopt the cloud while ensuring data protection, compliance and control. CipherCloud delivers a comprehensive multi-cloud security platform that integrates advanced data protection, content control, monitoring, cloud discovery and risk analysis. The largest financial services, insurance, healthcare, telecommunication, and gaming companies across more than 25 countries have put their trust in CipherCloud.

CipherCloud, named as SC Magazine's Best Product of the Year, technology is FIPS 140-2 validated and has received investments from premier venture capital firms Andreessen Horowitz, Transamerica Ventures, Delta Partners and T-Venture, the venture capital arm of Deutsche Telekom. For more information, visit and follow us on Twitter @ciphercloud.

CipherCloud Contact:

Lise Feng
Director of Corporate Communications

Logo -


SOURCE CipherCloud