More than half of Australian Enterprises Have Misplaced Confidence in their Cloud Service Providers’ Security

SYDNEY, Australia – Palo Alto Networks (NYSE: PANW), the global cybersecurity leader, released a report that uncovers the truth about the state of cloud security among large enterprises across Asia-Pacific including Australia, with many cases where perception doesn’t match the reality when it comes to securing the cloud.

Conducted by Ovum Research, the report shows that large enterprises, defined as those with more than 200 employees, are not prepared for cloud-related cybersecurity threats, and more importantly, make the assumption that public cloud is secure by default. In fact, 56 per cent of security decision-makers in large Australian enterprises believe that security provided by their cloud service providers is sufficient to protect them from cloud-based cyber threats.

“Organisations need to recognise that cloud security is a shared responsibility,” said Sean Duca, vice president and regional chief security officer, Asia-Pacific and Japan at Palo Alto Networks. “While cloud providers are responsible for the security of their infrastructure, the onus is on companies themselves to secure their data and applications stored in that infrastructure.”

Large Organisations Have Many Security Tools, but Lack a Unified View of Security

Among the Australian companies surveyed, 52 per cent operate with more than 10 security tools to secure their cloud. However, having numerous security tools creates a fragmented security posture, adding further complexity to managing security, especially if the companies are operating in a multi-cloud environment. The multi-cloud approach creates a dangerous lack of visibility that is prevalent in 69 per cent of large organisations in Australia, according to Ovum.

The report highlights the ubiquity of multi-cloud deployments in large organisations that calls for a unified view of all cloud-native services, and recommends it is ideal for organisations to have a central console that uses technologies such as artificial intelligence to help prevent known and unknown malware threats, and quickly remediate accidental data exposure when it arises.

Large Organisations Lack Cloud Security Audits and Training

The need for automation is further underscored by the study, which revealed that large enterprises do not have enough time and resources to dedicate to cloud security audits and training.

87 per cent of organisations have either never conducted a security audit or do not do it on a yearly basis. Furthermore, more than quarter of audits do not include cloud assets and 79 per cent of organisations conduct internal audits only. Besides audits, there is also inadequate cloud security training for both IT and non-IT staff. More than two thirds (68 per cent) of Australian organisations do not provide cybersecurity training to IT security employees on a yearly basis. It is, therefore, not surprising that staff outside of IT departments receive even less training – 86 per cent of non-IT professionals do not receive cybersecurity training on a yearly basis.

Despite organisations’ inability to provide more frequent audits and security training for IT teams and employees, it is encouraging to see 37 per cent of Australian organisations surveyed use threat intelligence and analytics to identify new threats and take necessary action. A further 16 per cent of Australian organisations have also equipped themselves with real-time threat monitoring capabilities.

In order to be truly secure in cloud environments, it is pertinent for organisations in Asia-Pacific to be cognisant of cloud security best practices, which include:

  • Building security into the cloud environment from the get-go; security should be an enabler to accelerate cloud adoption.
  • Developing consistent security policies across all types of cloud deployments, which can be implemented properly through the help of tools that provide a unified view of all cloud assets and the threats they face.
  • Allowing for frictionless deployment and easy scalability in multi-cloud environments, bridging the gap between highly controlled security teams and highly agile development teams.
  • Increasing audits and training for employees, both IT and non-IT.
  • Automating threat intelligence with natively integrated, data-driven, analytics-based approaches (leveraging machine learning/artificial intelligence) to avoid human error.

Learn More

  • The Asia-Pacific Cloud Security Study’ report features analysis and best practices that can be implemented to help companies in Asia-Pacific protect themselves from cloud-based threats.

Note to Editors

The survey was conducted amongst 500 respondents from various vertical industries of large businesses with over 200 employees across five countries in Asia-Pacific. There were 100 respondents per country in Australia, China, Hong Kong, India and Singapore.

The companies surveyed needed to have 200+ employees and all had to be using public cloud as a minimum. The respondents to the survey ranged from owners to business directors and C-level executives, all of whom had to be either the final decision-maker or influencer when it came to the organisations’ cloud strategy.

For more information on Palo Alto Networks cloud security offerings, visit


About Palo Alto Networks
Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world’s greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before. For more information, visit

Palo Alto Networks and the Palo Alto Networks logo are trademarks of Palo Alto Networks, Inc. in the United States and in jurisdictions throughout the world. All other trademarks, trade names or service marks used or mentioned herein belong to their respective owners.

Meru XPress Cloud: A powerful, intuitive, affordable Wi-Fi Solution for small-to-medium enterprises

Wavelink LogoFebruary 11, 2015 – Meru Networks® (NASDAQ: MERU), a leader in intelligent Wi-Fi networking, has announced the availability of Meru XPress Cloud, a controller-less 802.11ac Wi-Fi solution featuring cloud-based management that is purpose-built for small-to-medium enterprises (SMEs) and distributed enterprises. The XPress Cloud portfolio includes the new Meru XP8i access point, with management software hosted by Meru and delivered through industry-leading, highly-secure data centre providers worldwide. With Meru XPress Cloud, only network management traffic traverses the cloud; all corporate data remains behind the firewall.

“The Meru XPress Cloud Wi-Fi network was incredibly easy to set up compared to the Aruba system we replaced,” said Jeremy Carr, CIO of InQuest Technologies, Inc. “Our wireless LAN has been running great since we made the switch. Access to the XPress Cloud management platform has made it easier than ever to monitor the wireless devices on our network and the performance of each access point.”

Tailor-made for SMEs

SMEs globally account for approximately 95 per cent of private sector firms and employ over two-thirds of workers1, many of whom bring or are issued multiple mobile devices for use in the office. Supporting the increasingly high density of mobile devices in the workplace is a critical business function, not achievable by the consumer-grade Wi-Fi solutions in use by many smaller organisations today.

“Smaller businesses require the same high levels of performance and security that enterprises do, though IT support levels are typically much lower,” said Zeus Kerravala, principal analyst at ZK Research. “Meru XPress Cloud is designed to give SMEs enterprise-grade capabilities, with ease-of-use and intuitive management specifically designed to meet their needs.”

Ease of deployment

XPress Cloud is designed to be easily deployed by general office staff with little or no IT experience. Only a PoE-capable Ethernet switch or an optional external power supply, along with a basic Internet connection, are required to have an enterprise-grade wireless network up and running in minutes. The high-performance, two-radio, 2X2, 802.11ac Meru XP8i offers zero-touch provisioning, with automated channel and power selection capabilities enabling instant self-configuration. Meru XPress Cloud also features an integrated captive portal for secure on-boarding of employee and guest devices.

Channel-enabled acquisition and deployment options

XPress Cloud is available through authorised Meru channel partners and features management portal customisation, enabling partner-branded offerings. Meru gives customers two options for the acquisition of XPress Cloud, with XP8i access points available for purchase upfront, or available on a Wi-Fi-as-a-Service (WaaS), subscription basis. Monthly management and monitoring license fees apply.

“We’ve worked closely with small-to-medium enterprises around the world to understand what they need to meet their unique business demands,” said Don Trimble, vice president of SME Cloud Sales at Meru. “These findings, combined with our experience in the design of enterprise-grade WLAN solutions, led to Meru XPress Cloud — a high-performance offering that brings affordability, ease of deployment and scalability to the SME and distributed enterprise markets.”

XPress Cloud is available now.

For more information on Meru XPress Cloud, please join “Using the Cloud to make it Rain Wi-Fi,” a Meru-hosted webinar, on February 24. Register here:

1OECD Trade Policy Papers No. 165 – Small and Medium-Sized Enterprises in Global Markets: A Differential Approach for Services?


About Meru Networks

Meru Networks (NASDAQ: MERU) is a leader in intelligent 802.11ac Wi-Fi solutions delivering uninterrupted user experience for education, healthcare, hospitality and enterprise. The Meru open-standards-based architecture is designed to enable unified management of wired and wireless networks. Its end-to-end application QoS enables enforceable service-level agreements. Meru provides top performance and high capacity in high-density environments. Visit or call (408) 215-5300 for more information.
©2015 Meru Networks. Meru and Meru Networks are registered trademarks and the Meru logo is a trademark of Meru Networks, Inc. in the United States.

About Wavelink
Wavelink specialises in the supply, marketing and support of a range of leading edge Enterprise Mobility and UC Solutions. Wavelink distributes a range of products from Meru Networks, Spectralink, Digium, Polycom and Purple WiFi. For more information please contact Wavelink on 1300 147 000.