Are Businesses Becoming Too Dependent on Cloud Security Providers?

I’ve been working with companies that are moving almost everything to the cloud. While it definitely simplifies security management, I sometimes feel like organizations are becoming too dependent on their cloud security vendors.

For example, I’ve seen cases where a company had almost no internal security expertise left because “the cloud provider handles it.” That works until something goes wrong that requires in-house knowledge, and then everyone scrambles.

What do you think? Is this dependency a smart strategy, or should businesses balance cloud solutions with their own cybersecurity teams?