Your identity management in place, it’s time to embark on the route to either zero-trust or multi-cloud security. Whichever road you decide to travel at this point won’t likely matter: your choice may depend upon your business situation and goals.

If you’re using more than one cloud environment, securing your data within them may be your next move. Multi-cloud security has been an elusive “holy grail” for many companies, as their cyber teams work to navigate the parameters of each different environment. Using one solution that works across clouds can be the simplest, easiest, least costly strategy, and is now more accessible than ever.

Cloud service providers (CSPs) often don’t provide this security on their own. Typically, they protect the cloud infrastructure, the security on the cloud, but leave it up to users to control their risks of data breach within those clouds — the security in the cloud. That’s starting to change as CSPs, led by Microsoft Azure, focus their efforts on securing and protecting the data within their environments. In fact, Microsoft’s security solutions work in all the clouds.

For help securing your data and applications no matter which cloud they inhabit, consider using a multi-cloud security solution such as Microsoft’s. PwC can help to get you started.

Contrary to popular belief, zero-trust security isn’t a single stop or path on your cyber journey. The White House recently defined zero trust as having five key elements: identity, devices, networks, applications and workloads and data, and no single solution can provide everything you need to implement it.

Zero trust isn’t a solution, but a principle rooted in a "never trust, always verify" approach that uses a suite of tools to continually help authenticate and verify each user, device, action and transaction.

Because it involves a suite of solutions layered atop your identity manager — antivirus protection, mobile device and mobile application management, endpoint protection and others — zero trust is more effective when those solutions work together by design.

Too often, we find that clients’ security solutions don’t connect or communicate, making it more likely that attackers will slip through the cracks. Once inside the network, attackers can enjoy unlimited access to the organization’s most critical assets.

To strengthen the security of your clouds, Defender controls access to your critical cloud-based applications and resources, monitors and helps protect your multi-cloud workloads and streamlines threat intelligence reporting.

Microsoft Intune focuses on mobile device management (MDM) and mobile application management (MAM). With Intune you can:

• Secure, deploy and manage your users, apps and devices without disrupting business
• Support a diverse bring-your-own-devices (BYOD) policy
• Onboard, manage and report on encryption, antivirus, firewall and other security technologies to help protect work data inside your trusted apps and devices and when they go elsewhere

Microsoft Sentinel is a cloud-native security information and event management (SIEM) tool for helping manage threats enterprise-wide. Sentinel can aggregate security data from virtually any source. It uses artificial intelligence and machine learning to help distinguish security events from mere “noise,” reducing false-positive alerts (and fatigue). Its orchestration and automation features enable rapid response to threats while being able to seamlessly integrate with most project ticketing tools.

For discovering, identifying, and protecting data. Microsoft’s Information Protection services and software enable you to discover and monitor your sensitive information in motion and at rest, wherever it may reside, and to configure data protection rules and enforcement actions flexibly for your devices, applications, cloud environments, and Microsoft services and software.