Is the cloud secure enough for organizations?

yes, no, maybe, it depends, definitely not, but definitely ...

There is no such thing as “the cloud”. There are different forms (public, hybrid, private cloud). Ultimately, the NAS tower, where audio and video are stored and streamed, is also at home as a form of “cloud”.

In my view, which form is suitable depends crucially on the data content. The manuals that are already publicly available on the Internet today… why not offer them in a cloud environment? On the other hand, maybe 20 or more times you should think about whether to host your patent documents, your blueprints, your manufacturing processes at Amazon, Google or wherever, or whether it makes more sense to keep them in-house.

“Sure enough” can only be assessed taking into account the data content: what is “safe enough” for manuals may (still) be completely insufficient for the storage of business-critical data - see the previous point.

In addition, some local laws may come into play: Certain data may only be processed within the country. As a result, large providers may drop out who have their data centers in the USA (NSA sends their regards, you should also have that in mind ...) or in Ireland or Timbuktu. If there is no local provider that fulfills the security requirements, you can steal whatever it takes, it just doesn't work.

... just a few food for thought;)

And when the going gets tough: The best certifications are not worth the glossy paper on which they are printed in the managing director's office, if something does happen ... be it due to technical or human or organizational errors. And they happen, again and again, yesterday, today and in the future.