How to Help Secure Your Company's Cloud Deployments

Who we serve
- Business
- Small Business Banking
  U.S. companies with up to $5 million in revenue.
- Business Banking
  U.S. companies with $5 million to $50 million in revenue.
- Global Commercial Banking
  Multinational companies with $50 million to $2 billion in revenue.
- Global Corporate & Investment Banking
  Multinational companies with over $2 billion in revenue.
- Institutional Investors
- Global Markets
  Global asset managers, hedge funds, pensions and insurance, corporates, governments and other financial institutions.
- BofA Global Research
  Our award-winning analysts provide insightful, objective and in-depth research to help you make informed investing decisions.
- Featured Industries
- Auto Dealerships
- Healthcare
- Higher Education
- Not-for-profit organizations
- Public Sector
- Real Estate
- Restaurant
- Technology
Talk with a relationship manager

Get one-on-one guidance from a local Business Banker.
Solutions
- Treasury
  Optimize liquidity & manage risk with our comprehensive treasury solutions.
- Corporate Credit Cards
- Intelligent Payables
- Liquidity Management
- Merchant Services
- Payments Management
- Receivables Management
- Trade & Supply Chain Finance
- Banking
  Secure, efficient business banking solutions for growth.
- Asset-Based Lending
- BofA Working Capital Manager®
- Business Advantage for small companies
- Equipment Financing
- Investment Banking
- SBA Loans
- Sustainable Finance
- Workplace Benefits
- Institutional Investors
  Maximize returns, minimize risk with our institutional investing expertise.
- BofA Global Research
- BofA Mercury
- Equities Electronic Trading
- FX
- Municipals
CashPro®

Your complete digital banking platform.
Research & insights
- Bank of America Institute
- Bank of America Institute
  Original perspectives on the economy, sustainability and global transformation.
- Consumer Checkpoint
  A holistic and real-time look at U.S. consumers' spending and financial well-being.
- BofA Global Research
- BofA Global Research
  Our award-winning analysts provide insightful, objective and in-depth research to help you make informed investing decisions.
- Global Research Unlocked™ Podcast
  Our best-in-class analysts discuss what’s rising — from emerging risks and opportunities to growth industries.
- Must Read Research
  What you should know from the past week.
- Insights
- Attracting & Retaining Talent
- Business Insights
- Center For Business Empowerment
- Digital Innovation
- Fraud & Cyber Security
- Sustainability
- Trader Insights
- Treasury Insights
See the latest from Bank of America Institute

Uncovering powerful insights that move business and society forward.
Global presence
- Who We Are
- About Us
  We offer innovative business solutions, research and analysis globally.
- International
  Expertise, solutions, global reach and shared success across continents.
- Careers
  Search world-wide job openings, apprenticeships or internships to see where to take the next step.
- Where We Are Globally
- Asia Pacific
- Europe, Middle East & Africa
- Latin America
- United States & Canada
- Featured Country Pages
- Australia
- China
- France
- Germany
- Hong Kong
- India
- Ireland
- Italy
- Malaysia
- Middle East
- Nordics
- Singapore
- South Korea
- Switzerland
- Taiwan
- United Kingdom
Bank of America in the Nordic region

Explore how Bank of America leverages on-the-ground knowledge and its global resources to help companies and institutions in the Nordics prosper.

Corporations & Institutions

Cloud security is a shared responsibility. Your cloud provider protects infrastructure; your organization must maintain strong access management and data controls.
Your policies around identity and privilege management are crucial to maintaining security within cloud environments.
Planning for a breach and developing a cyber incident response plan is required of any business using cloud tools and platforms.

Cloud capabilities have become indispensable to almost every type of business. Hybrid (the use of a private and public cloud services) and multi-cloud (using more than one public cloud service) deployments provide data storage, enable real-time communication and collaboration, link disparate teams and systems and connect new devices to company networks. Cloud deployments can also scale up rapidly, which helps many companies quickly establish new connections and working conditions with partners, customers, internal teams and remote employees.

But these deployments also present significant cybersecurity risk from criminals who continue to exploit unpatched vulnerabilities, digital supply chains and substandard identity management. Cloud misconfigurations, shadow IT and mismanaged access can also result in lost data and compliance violations.

Cloud service providers (CSPs) offer a robust security apparatus around their products and services, but these companies are not solely responsible for secure cloud deployments. As just one example, while most CSPs offer data encryption capabilities, users typically must opt in to access them.

Whether your company uses Software as a Service/SaaS (e.g., email or data storage), Platform as a Service/PaaS (e.g., app building kits) or Infrastructure as a Service/IaaS (e.g., hybrid or multi-cloud architectures), securing your cloud deployments is a shared responsibility between you and your CSP. Specifically, your organization must create policies and controls that protect critical data, account access and the physical security of any device connecting to your cloud.

As a best practice, cloud security should follow many of the same principles that govern the security of on-premises clouds and networks that are the exclusive responsibility of the enterprise. An approach that emphasizes cyber hygiene and granting access and permissions only as needed will help you cover the security basics.

Here are steps your organization can take to improve and maintain security in your cloud deployments:

A diagram of cloud security responsibilities for cloud service providers and customers.

Taking responsibility for cloud security

Determining who is responsible for cloud security — the customer, the cloud vendor or both — varies among cloud models. In general, providers are responsible for safeguarding the infrastructure that runs services in the cloud, while cloud customers must manage access, identity of users and data storage.

For On premises infrastructure, the customer has responsibility for Data, Client endpoints, Account & access management, Application, Operating system, Network and Physical security/hardware resources.

For Infrastructure as a Service, the customer has responsibility for Data, Client endpoints, Account & access management, Application, Operating system resources. The customer and the Cloud service provide share responsibility for Network resources. The Cloud service provider has responsibility for Physical security/hardware resources.

For Platform as a Service, the customer has responsibility for Data, Client endpoints, Account & access management resources. The customer and the Cloud service provide share responsibility for Application and Network resources. The Cloud service provider has responsibility for Operating system and Physical security/hardware resources.

For Software as a Service, the customer has responsibility for Data, Client endpoints and Account & access management resources. The customer and the Cloud service provide share responsibility for Application resources. The Cloud service provider has responsibility for Operating system, Network and Physical security/hardware resources.

Insights to protect your business from cyber threats

Both businesses and cybercriminals are leveraging the power of AI to reshape the cyber fraud landscape to suit their goals. Learn how to protect your business.

As business needs and outcomes change, your company’s security mindset and tactics must evolve to stay in sync.

Security. It's in our nature. The threats never rest, and neither do we. We arm you with education against fraud and a team that’s dedicated to keeping your business secure.