Archived: The 5 fundamentals of scalable cloud security: Keys to lowering risk & bolstering ROI
The cloud has turned security as we know it on its head. It looks and operates differently from the familiar data center, and traditional security practices don’t fully cover the cloud. The cloud attack surface is different as well, and so are the patterns used when cloud environments are attacked.
Working closely with cloud security and engineering teams that are transforming how they do security at scale has revealed five fundamental strategies that they all focus on to minimize cloud risk, help teams move faster, and maximize the ROI of their security programs. These strategies are: know your environment, prevention and secure design, empowering developers, policy as code, and measuring what matters.
Join this session and walk away with an understanding of these five fundamentals, along with some simple recommendations for getting started on each one.
Drew Wright
Director of strategic content
Snyk
Drew Wright is director of strategic content at Snyk, the leader in developer security, and was co-founder and chief cloud security evangelist at Fugue (acquired by Snyk). Drew produces the Cloud Security Masterclass series, the Engineer’s Handbook on Cloud Security, and the annual State of Cloud Security Report. Drew is dedicated to helping teams transform their cloud security strategy so they can reduce risk, deliver cloud applications faster, and invest more in building value.
Sponsored by:
Speakers
Drew Wright is director of strategic content at Snyk, the leader in developer security, and was co-founder and chief cloud security evangelist at Fugue (acquired by Snyk). Drew produces the Cloud Security Masterclass series, the Engineerâs Handbook on Cloud Security, and the annual State of Cloud Security Report. Drew is dedicated to helping teams transform their cloud security strategy so they can reduce risk, deliver cloud applications faster, and invest more in building value.
Jill Aitoro leads editorial for SC Media, and content strategy for parent company CyberRisk Alliance. She 20 years of experience editing and reporting on technology, business and policy.