Day Two Cloud 055: Securing Cloud Infrastructure And Applications
The Everything Feed - All Packet Pushers Pods - A podcast by Packet Pushers
Categories:
Welcome to Day Two Cloud. Security is difficult and tricky, but we’ve got an amazing guest to help you improve your security posture and manage your cloud risk. Our guest is Tanya Janca, Founder, Security Trainer, and Coach at She Hacks Purple.
We discuss:
* Key cloud security areas including the network, identity, and application security
* Whether to approach security from an infrastructure or application view
* Managing identity in the public cloud
* Getting visibility without getting overwhelmed
* API security
* Security considerations for SaaS applications
* Building processes to manage risk across a growing number of cloud applications
* The intersection of security and DevOps
* More
Takeaways:
* Multi Factor Authentication for anything you care about. “This messes attackers UP!”
* When you go to cloud, ZERO TRUST. The edge matters, but it’s not enough.
* Use the security tools your cloud provider is giving you. You’re paying for them.
Sponsor: Datadog
Datadog is a monitoring platform for cloud-scale infrastructure and applications. Datadog provides dashboarding, alerting, application performance monitoring, and log management in one platform so you can get end-to-end visibility quickly. It integrates seamlessly with AWS, so you can start monitoring EC2, RDS, ECS, and all your other AWS services in minutes. Try it yourself with a free, 14-day trial and get a free Datadog T-shirt! Visit datadog.com/daytwocloud to get started.
Show Links:
Shehackspurple.dev
Tanya Janca @shehackspurple (Twitter, YouTube, Twitch)