Comparative analysis of cybersecurity in leading cloud platforms based on the NIST framework

Abstract Purpose: To examine the cybersecurity capabilities of three leading cloud platforms—AWS, Azure, and GCP—according to the five core functions of the NIST Cybersecurity Framework: identify, protect, detect, respond, and recover. Method: A comparative approach was used, covering the analysis of the tools and services of each platform for the implementation of NIST functions. Findings: The analysis demonstrated the strengths and weaknesses of AWS, Azure, and GCP in terms of identity, protection, detection, response, and recovery capabilities, highlighting the most effective tools for each. Theoretical implications: The study deepens the understanding of cybersecurity strategies based on the NIST framework and can serve as a basis for further research in the direction of optimizing protection in cloud environments. Practical implications: The obtained results provide valuable recommendations for improving cloud security practices through informed choice of cloud services and security strategies. Value: The study offers a structured approach to assessing the cybersecurity of cloud platforms, highlighting each provider's ability to address different aspects of cybersecurity. Future research: Future research may focus on the impact of emerging technologies such as artificial intelligence and machine learning on improving the effectiveness of cybersecurity in cloud environments. Paper type: Conceptual research.   Key words: cloud computing, cloud services, cloud security, cybersecurity, NIST framework