The book includes insights from the following experts:
- Katherine Riley, Director of Information Security & Compliance, Braintrace >>
- Paul Dackiewicz, Lead Security Consulting Engineer, Advanced Network Management (ANM) >>
- Darrell Shack, Cloud Engineer, Cox Automotive Inc >>
- Ross Young, Director, Capital One >>
Mauro Loda, Senior Security Architect, McKesson >>
James P. Courtney, Certified Chief Information Security Officer, Courtney Consultants, LLC >>
Milinda Rambel Stone, Vice President & CISO Provation Medical >>
Resetting your security thinking for the public cloud was generously sponsored by Lacework.
More and more organizations are adopting cloud-first strategies as they initiate new projects or migrate from older systems. To meet rigorous business demands, they operate with frequent code releases, increasingly make use of containers, and process and store data for compliance and cost-management. There’s a lot changing in this kind of environment, and as we see with our customers, SIEMs and firewalls just aren’t equipped to provide the level of insight required —they aren’t engineered for automation, and they definitely can’t operate at scale.
Old school security merchants can’t build solutions fast enough to address the growing tide of cloud migrants and upstarts initiating a cloud-first strategy, so they’re opting to piece together component parts to make something that vaguely resembles a comprehensive solution. Their sales approach is menu-like, but their product strategy is far from unified. This is confusing for customers, especially as security teams question whether a company with a hardware mentality can adapt its technology and product strategy to meet demand, and do it in a way that addresses their velocity and scalability needs.
It’s time for a new approach, one that is optimized for the cloud and containerized environments that provides customers with comprehensive threat defense, intrusion detection, and compliance management over their cloud accounts and workloads, all at scale. This book offers valuable insights into how innovative security managers approach defense and risk management for their multicloud infrastructures. The approaches here demonstrate that effective security requires a comprehensive, unified approach that covers all activity and makes sense of it. We feel strongly that adopting the approaches described here will help you create a more secure, manageable cloud infrastructure that keeps your data and customers safe.