That's a great point, Joseph, encryption is definitely not a silver bullet, although one important aspect of securing data. Security requires a multi-layer approach, with not only additional technical security tools but also at the administrative and physical security level.
Establishing solid policies and procedures around access and roles can make it clear who needs to use the data and for what - this goes not only for the organization, but also for their cloud service provider. These types of questions should be addressed in the service level agreement/contract with your cloud provider.
From a technical perspective, other tools such as locating sensitive data on a secure server and limiting access to it remotely from a Virtual Private Network (VPN) via two-factor authentication can add another layer of security by providing double-verification of an individual's identity authenticity. Vulnerability scanning is a tool that checks your firewalls, networks and open ports to detect outdated versions of software that could put you at risk of a data breach.
There are many more ways to protect than encryption, but those are just a few. Visit our blog for more info: http://resource.onlinetech.com/