Day Two Cloud 148: Understanding Cloud Security Roles And Responsibilities
The Everything Feed - All Packet Pushers Pods - A podcast by Packet Pushers
Categories:
If you’re a security or network professional wondering if your skills aren’t as applicable or useful when it comes to public cloud, don’t worry: they are very, very useful. On today’s Day Two Cloud podcast we talk with Brandon Carroll on how to properly map traditional infrastructure and network security to public cloud deployments. Brandon has old-school networking credentials and is now deep in the cloud world as a Developer Advocate at AWS. We discuss: * Carrying over on-prem security constructs to the cloud * Common cloud processes and where they need to be secured * Understanding shared responsibility between cloud customers and cloud providers and where those responsibilities diverge * Why cloud security defaults are better now, but still not enough * Best practices for cloud security * More Tech Bytes: HashiCorp Consul On today’s sponsored Tech Bytes episode we check out how Consul helps with network infrastructure automation, and dig into what’s included in the Enterprise version of Consul. Joining us today is Hari Sankaran from Hashicorp’s Consul product team. Takeaways: If you have traditional network security knowledge that can be very useful for organizations moving to cloud. A great deal of your knowledge is transferable. The barrier to entry is not like it used to be. Create two accounts, your account to learn and your account to implement and test. It’s not like trying to build a rack of 2500’s and 1900’s or even get GNS3 or IOU up and running anymore. You can pretty much do it all, now. Show Links: Brandonjcarroll.com – Brandon’s blog Brandon Carroll on Medium @brandoncarroll – Brandon Carroll on Twitter Brandon Carroll on LinkedIn Transcript: This transcript is provided as-is with no error correction by humans. [00:00:04.810] – Ethan Welcome to Day Two Cloud. And today we’re going to talk to Brandon Carroll. Brandon is brand new at AWS. He just started recently as a developer advocate, and we are going to pick his brain on the security side side of things, which has been Brandon’s bailawic for a very long time. He’s got old school nerd, traditional networking credentials, and now he’s in the cloud world, deep in the cloud world, AWS. Ned, and what did you note from Brandon’s conversation? [00:00:32.100] – Ned I feel like there’s a very real concern from some seasoned security and network professionals that their skills are no longer useful, not applicable in the cloud. And Brandon has some thoughts on that. And the answer won’t surprise you that those skills are actually still very useful, very useful. [00:00:50.530] – Ethan The challenge just being mapping your old school thoughts about infrastructure to what that looks like in the cloud and how to do that properly. So enjoy this conversation with Brandon Carrol. And then stay tuned at the end for a HashiCorp tech bite. We’re going to be chatting with them about Consul Terraform sync, which is super neat, I must admit. So stay tuned for that at the very end of this Day Two Cloud episode. Up now is Brandon. Brandon Carroll. Welcome to Day Two Cloud. And man, you’re kind of the new guy over there at AW...