In the infrastructure and platform-as-a-service worlds, application developers are the new infrastructure superstars. With concepts ranging from containers to infrastructure as code, we are experiencing a paradigm shift in how tightly coupled application code and the related infrastructure are. Often security is underrepresented in this formula and for good reason; our challenge is first to understand the new security conventions and controls, but then to understand how to achieve visibility and governance of these controls within application infrastructure that never sleeps. It's a tall order, but tools, processes, and perspectives are maturing and in this session, I will share lessons learned from firsthand experience on how to tackle this emerging challenge.
Jacob Graves is a security engineer at Orca Security, the world's first agentless cloud security platform. Prior to joining Orca, Jacob worked at Twistlock helping to secure some of the largest container users in the world. When not speaking passionately about the next generation of cloud security, you can find Jacob missing easy putts on the disc golf course near his home in Baton Rouge, Louisiana.
Cyber Risk Alliance
Bill Brenner is VP of Content Strategy at CyberRisk Alliance -- an InfoSec content strategist, researcher, director, tech writer, blogger and community builder. He was formerly director of research at IANS, senior writer/content strategist at Sophos, senior tech writer for Akamai Technology's Security Intelligence Research Team (Akamai SIRT), managing editor for CSOonline.com and senior writer for SearchSecurity.com.
*All times listed in Eastern Time (ET)