When organizations think about cloud they rightly think of speed to market, agility, simplification but there is still a part of the organization that wishes it would go away.    These would be the security architects and operations.

The article points out that data loss and leakage are their largest concerns when the cloud everywhere and so easily accessible.  Trying to have enough fingers to plug all the holes in the dike is totally unachievable.   The only way to secure is to begin to adopt a Zero Trust model.   

Foundationally Zero Trust should have these basic capabilities; least privilege, microperemiters, and multi-factor authentication.  Infrastructure agnostic micro segmentation should assist with visibility, consistent security policy, work anywhere (public/private cloud) and integrate into any/all application deployment models.   Pulling security segmentation out of the network is the only way to even have a fighting chance to have an answer.