Cloud adoption is continuing to transform the IT infrastructure and security landscapes by delivering unmatched scalability and flexibility. Multi-cloud strategies further enhance these advantages but introduce unique challenges, prompting organizations to implement innovative solutions to safeguard their critical assets effectively.
The 2025 State of Cloud Security Report, based on insights from 873 cybersecurity professionals, provides an in-depth analysis of the evolving cloud security landscape, highlighting key trends, challenges, and priorities for organizations navigating increasingly complex environments. This report serves as a guide for IT and security professionals seeking to strengthen their hybrid and
multi-cloud security posture while continuing innovation.
Key findings from this report include:
• Hybrid and Multi-Cloud Strategies on the Rise: Over 78% of respondents utilize two or more cloud providers, underscoring the growing importance of multi-cloud approaches to enhance resilience and leverage specialized capabilities. 54% of organizations have adopted hybrid cloud models, integrating on-prem and public cloud environments to optimize flexibility and control.
• Security and Compliance Top Concerns: Security and compliance issues are the primary barriers to cloud adoption, cited by 61% of organizations striving to meet regulatory requirements and protect sensitive data.
• Skills Gap in Cloud Security Expertise: 76% of organizations report a shortage of expertise in cloud
security, highlighting the need for automation, targeted upskilling, and resource optimization.
• Low Confidence in Real-Time Threat Detection: The survey data highlights that 64% of respondents lack confidence in their organization’s ability to handle real-time threat detection.
• Unified Cloud Security Platforms: The survey shows 97% of respondents prefer unified cloud security platforms with centralized dashboards to simplify policy configuration, ensure consistency, and enhance visibility across an organization’s cloud footprint.
• Rapid Adoption of Cloud Security Posture Management (CSPM) and Cloud-Native Application Protection Platforms (CNAPP): To address misconfigurations and compliance gaps, 67% of respondents are implementing CSPM and 62% CNAPP solutions to protect cloud environments.
This report underscores the importance of unified cloud security solutions that streamline policy enforcement, automate threat detection, and ensure consistent protection across hybrid and multi cloud environments. By leveraging these insights and best practices, organizations can build a resilient cloud security posture that adapts to evolving threats and business demands.
We extend our sincere gratitude to Fortinet, a global leader in cloud security, for their invaluable contribution to this research. Their expertise and insights into securing hybrid and multi-cloud environments have significantly strengthened the findings and recommendations presented in this report.
We hope this report serves as a valuable resource for IT and cybersecurity professionals striving to secure their organizations in this era of rapid cloud expansion.
