Leidos Executive Emphasizes Shared Security Responsibility Between Cloud Service Providers and Users

Srini Iyer, senior vice president and chief technology officer at Leidos Health Group and a 4×24 member, said cloud service providers and users share responsibility for securing environments.

In an interview with Federal News Network, he explained that while CSPs should deliver reliable infrastructure, organizations using applications or handling data within those environments must maintain end-to-end data encryption.

According to Iyer, securing data on on-premises servers is vital in the health care industry, where data can be split between the cloud and on-site infrastructure. He noted that taking a hybrid approach leads to cloud sprawl, a situation where data is stored in multiple cloud and on-premises servers.

Iyer advised enterprise information technology managers to have a central view of data across CSPs and implement governance so organizations do not provide too many or too few services and resources to users.

Iyer pointed to generative artificial intelligence as a transformative capability for enterprise IT. He said organizations should ready themselves through change management and worker upskilling, Leidos said Tuesday.