INFRASTRUCTURE AS CODE SECURITY
Cloud Security Podcast17 Jan 2021

INFRASTRUCTURE AS CODE SECURITY

In this episode of the Virtual Coffee with Ashish edition, we spoke with Matt Johnson, Developer Advocate Lead, Bridgecrew.

In this episode, Matt & Ashish spoke about

  • What was Matt’s path into Developer Advocate role?
  • What does Cloud Security mean to Matt?
  • What is Infrastructure as Code and Infrastructure Code Security ?
  • Are developers or security teams doing more infrastructure as a code security?
  • What is develop first cloud security?
  • Thoughts on static code and run time analysis?
  • It is a requirements to know Yaml, Python or Json for Cloud Networking?
  • What kind of specific training is recommended for developers who are new to IAC?
  • What open source codes are good resources?
  • Where can people start with infrastructure as security
  • Can people without a security background still take advantage of the open source security tools?
    • How to get started in the open source space?

ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv

Twitter - @kaizenteq @hashishrajan

If you want to watch videos of this and previous episodes:

- Twitch Channel: https://lnkd.in/gxhFrqw

- Youtube Channel: https://lnkd.in/gUHqSai

Episoder(343)

Centralized VPC Endpoints - Why It Works for AWS Networking

Centralized VPC Endpoints - Why It Works for AWS Networking

In this episode, Meg Ashby, a senior cloud security engineer shares how her team tackled AWS’s centralized VPC interface endpoints, a design often seen as an anti-pattern. She explains how they turned...

17 Des 202448min

What is CADR?

What is CADR?

In this episode, recorded at Kubecon NA in Salt Lake City, we spoke about about Kubernetes security with Shauli Rozen, co-founder and CEO of ARMO Security. From the challenges of runtime protection to...

5 Des 202429min

Building Platforms in Regulated Industries

Building Platforms in Regulated Industries

At HashiConf 2024 in Boston, our host Ashish Rajan had a great chat over some cannolis and a game of Jenga with AJ Oller, AVP of Engineering at The Hartford about how automation, mainframes, and compl...

21 Nov 202436min

Dynamic Permission Boundaries: A New Approach to Cloud Security

Dynamic Permission Boundaries: A New Approach to Cloud Security

In this episode, Ashish spoke with Kushagra Sharma, Staff Cloud Security Engineer, to delve into the complexities of managing Identity Access Management (IAM) at scale. Drawing on his experiences from...

12 Nov 202446min

Building a Resilient Cloud Security Program after Merger and Acquisition

Building a Resilient Cloud Security Program after Merger and Acquisition

In this episode, host Ashish Rajan sits down with Prahathess Rengasamy, a cloud security expert with extensive experience at companies like Credit Karma, Block, and Apple. Together, they explore the c...

9 Nov 202439min

Building Data Perimeter in Cloud in 2024

Building Data Perimeter in Cloud in 2024

In this episode, Ashish gets into the critical topic of data perimeters in AWS with our guest, Tyler Warren, a Lead Cloud Security Engineer at USAA. As cloud environments continue to evolve, the impor...

31 Okt 202456min

Navigating NIST CSF 2.0: Guide to Frameworks and Governance

Navigating NIST CSF 2.0: Guide to Frameworks and Governance

In this episode, we sat down with Lukasz Gogolkiewicz, an Australia-based Cybersecurity Leader and former pentester, to explore his journey from offensive security into cybersecurity leadership. Lukas...

22 Okt 202436min

Building a SOC Team in 2024 - Automation & AI

Building a SOC Team in 2024 - Automation & AI

What is the future of SOC? In this episode Ashish sat down with Allie Mellen, Principal Analyst at Forrester, to explore the current state of security operations and the evolving role of AI in cyberse...

15 Okt 202456min

Populært innen Teknologi

lydartikler-fra-aftenposten
romkapsel
teknisk-sett
shifter
rss-impressions-2
fornybaren
rss-ki-praten
tomprat-med-gunnar-tjomlid
elektropodden
rss-alt-vi-kan
rss-ai-forklart
energi-og-klima
hans-petter-og-co
pedagogisk-intelligens
nasjonal-sikkerhetsmyndighet-nsm
rss-teknologioptimistene-energibransjens-it-podcast
rss-digitaliseringspadden
rss-praktisk-proptech
rss-startup
rss-polypod