Get every episode of every Packet Pushers podcast in one very fat, very handy feed! Because too much technology would never be enough. Includes Day Two Cloud, Heavy Networking, Heavy Strategy, Heavy Wireless, IPv6Buzz, Kubernetes Unpacked, and Network Break.
https://packetpushers.net/podcasts/
Day Two Cloud 055: Securing Cloud Infrastructure And Applications
Welcome to Day Two Cloud. Security is difficult and tricky, but we’ve got an amazing guest to help you improve your security posture and manage your cloud risk. Our guest is Tanya Janca, Founder, Security Trainer, and Coach at She Hacks Purple.
We discuss:
* Key cloud security areas including the network, identity, and application security
* Whether to approach security from an infrastructure or application view
* Managing identity in the public cloud
* Getting visibility without getting overwhelmed
* API security
* Security considerations for SaaS applications
* Building processes to manage risk across a growing number of cloud applications
* The intersection of security and DevOps
* More
Takeaways:
* Multi Factor Authentication for anything you care about. “This messes attackers UP!”
* When you go to cloud, ZERO TRUST. The edge matters, but it’s not enough.
* Use the security tools your cloud provider is giving you. You’re paying for them.
Sponsor: Datadog
Datadog is a monitoring platform for cloud-scale infrastructure and applications. Datadog provides dashboarding, alerting, application performance monitoring, and log management in one platform so you can get end-to-end visibility quickly. It integrates seamlessly with AWS, so you can start monitoring EC2, RDS, ECS, and all your other AWS services in minutes. Try it yourself with a free, 14-day trial and get a free Datadog T-shirt! Visit datadog.com/daytwocloud to get started.
Show Links:
Shehackspurple.dev
Tanya Janca @shehackspurple (Twitter, YouTube, Twitch)