1) 84% of UK businesses now use cloud services, with adoption increasing yearly, as hybrid cloud environments become more common. 2) To properly secure these complex hybrid environments, businesses must understand the evolving threat landscape and who may be attacking them, implement strong access management and patching practices similar to on-premise systems, and acknowledge security as an ongoing responsibility. 3) When using cloud services, both the service provider and customer share responsibility for security - while providers focus on foundational security of networks and platforms, customers are responsible for securing applications and custom configurations.