Transforming Legacy Systems to SaaS: The Case Against Complexity in Enterprise Security

In a recent interview with Help Net Security, Robert Buljevic, Technology Consultant at Bridge IT, highlighted the challenges organizations face as they navigate the coexistence of legacy systems and Software as a Service (SaaS) applications. He noted that the shift from traditional on-premises setups to SaaS is reshaping security approaches, with business process owners now driving the demand for new technology solutions. This shift has left IT departments struggling to keep pace while managing outdated core systems. The increasing complexity of IT environments, coupled with limited resources, heightens the risk of human error and security incidents. Organizations often find themselves caught in a cycle of competing priorities, which can widen security gaps and complicate operational efficiency.

Buljevic also addressed the “sunk cost fallacy,” where IT departments continue to invest in outdated systems due to previous expenditures, even when transitioning to more efficient setups would be beneficial. He pointed out that this mindset can lead to significant long-term costs and hinder the ability to meet evolving business needs. Additionally, organizations face external threats, particularly from social engineering attacks targeting employees without robust multifactor authentication. Threat actors also exploit vulnerabilities in on-premises infrastructure, including next-generation firewalls and VPN gateways. Buljevic emphasised that IT security budgets often remain misaligned with the current threat landscape, further complicating the security posture of many organizations. 

Categories: Legacy Systems and SaaS Integration, Security Challenges and Human Error, Sunk Cost Fallacy in IT Investments 

Tags: Legacy Systems, SaaS Applications, Security, IT Innovation, Business Needs, Complexity, Human Error, Sunk Cost Fallacy, Threat Actors, Multifactor Authentication