The cloud has turned security as we know it on its head. It looks and operates differently from the familiar data center, and traditional security practices don’t fully cover the cloud. The cloud attack surface is different as well, and so are the patterns used when cloud environments are attacked.
Working closely with cloud security and engineering teams that are transforming how they do security at scale has revealed five fundamental strategies that they all focus on to minimize cloud risk, help teams move faster, and maximize the ROI of their security programs. These strategies are: know your environment, prevention and secure design, empowering developers, policy as code, and measuring what matters.
Join this session and walk away with an understanding of these five fundamentals, along with some simple recommendations for getting started on each one.
Director of strategic content
Drew Wright is director of strategic content at Snyk, the leader in developer security, and was co-founder and chief cloud security evangelist at Fugue (acquired by Snyk). Drew produces the Cloud Security Masterclass series, the Engineer’s Handbook on Cloud Security, and the annual State of Cloud Security Report. Drew is dedicated to helping teams transform their cloud security strategy so they can reduce risk, deliver cloud applications faster, and invest more in building value.
Senior Vice President of Content Strategy
Jill Aitoro is senior vice president of content strategy for CyberRisk Alliance. She has more than 20 years of experience editing and reporting on technology, business and policy. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media’s VARBusiness and CRN and Penton Media’s iSeries News.