Sign up to save your podcasts
Or
Share Aaron Palermo: Zero Trust Networking - Episode 196
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Aaron Palermo: Zero Trust Networking - Episode 196
Aaron is a DevOps engineer, solution architect, and all-around cybersecurity expert. He works for a global cybersecurity services company, is a member of the Cloud Security Alliance, and is a co-author of the up-and-coming Software Defined Perimeter Specification Version 2. Since last time (episode 18), Aaron was 1.5 years overseas supporting the Army and moved back to the U.S. last year to join Appgate as a Senior Solutions Architect.
Topics of Discussion:
[4:11] What types of things has Aaron observed that programmers don't typically gravitate towards, but they need to give some attention to in just the overall IT and security space?
[9:42] Should developers be thinking about zero trust just for their production environments, or should they be thinking about it for their own working environments, as well?
[13:30] Is there a standard set of tags that someone could use from day one?
[15:15] A core tenet of Zero Trust is Enterprise Identity Governance.
[17:35] Do the cloud providers already have this mechanism of automatically discovering via tags and/or is there something that needs to be added to what they provide?
[22:36] What are the pros and cons of working with smaller vs. bigger companies?
[24:41] What does Aaron see for the future?
Mentioned in this Episode:
Architect Tips — New video podcast!
Azure DevOps
Clear Measure (Sponsor)
.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!
Jeffrey Palermo's YouTube
Jeffrey Palermo's Twitter — Follow to stay informed about future events!
- Appgate — The leader in Zero Trust Network Access solutions
Zero Trust Thirty
- EO 14028 — Executive Order on Improving the Nation's Cybersecurity
- Presidential memo on Moving the U.S. Government Toward Zero Trust Cybersecurity Principles
- CISA's focus on Zero Trust — 508 search results
- CISA's Zero Trust Maturity Model document
- NIST — Implementing Zero Trust Architecture
- Cloud Security Alliance — Software Defined Perimeter and Zero Trust
- Platform One — "An official DoD DevSecOps Enterprise Services team for the DoD" leveraging CNAP for secure remote access to cloud resources.
- Department of Defense (DoD) Cloud Native Access Point (CNAP) Reference Design (RD)
Want to Learn More?
Visit AzureDevOps.Show for show notes and additional episodes.
View all episodes
By Jeffrey Palermo
4.6
2222 ratings
Aaron is a DevOps engineer, solution architect, and all-around cybersecurity expert. He works for a global cybersecurity services company, is a member of the Cloud Security Alliance, and is a co-author of the up-and-coming Software Defined Perimeter Specification Version 2. Since last time (episode 18), Aaron was 1.5 years overseas supporting the Army and moved back to the U.S. last year to join Appgate as a Senior Solutions Architect.
Topics of Discussion:
[4:11] What types of things has Aaron observed that programmers don't typically gravitate towards, but they need to give some attention to in just the overall IT and security space?
[9:42] Should developers be thinking about zero trust just for their production environments, or should they be thinking about it for their own working environments, as well?
[13:30] Is there a standard set of tags that someone could use from day one?
[15:15] A core tenet of Zero Trust is Enterprise Identity Governance.
[17:35] Do the cloud providers already have this mechanism of automatically discovering via tags and/or is there something that needs to be added to what they provide?
[22:36] What are the pros and cons of working with smaller vs. bigger companies?
[24:41] What does Aaron see for the future?
Mentioned in this Episode:
Architect Tips — New video podcast!
Azure DevOps
Clear Measure (Sponsor)
.NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon!
Jeffrey Palermo's YouTube
Jeffrey Palermo's Twitter — Follow to stay informed about future events!
- Appgate — The leader in Zero Trust Network Access solutions
Zero Trust Thirty
- EO 14028 — Executive Order on Improving the Nation's Cybersecurity
- Presidential memo on Moving the U.S. Government Toward Zero Trust Cybersecurity Principles
- CISA's focus on Zero Trust — 508 search results
- CISA's Zero Trust Maturity Model document
- NIST — Implementing Zero Trust Architecture
- Cloud Security Alliance — Software Defined Perimeter and Zero Trust
- Platform One — "An official DoD DevSecOps Enterprise Services team for the DoD" leveraging CNAP for secure remote access to cloud resources.
- Department of Defense (DoD) Cloud Native Access Point (CNAP) Reference Design (RD)
Want to Learn More?
Visit AzureDevOps.Show for show notes and additional episodes.
More shows like Azure & DevOps Podcast
View all
Software Engineering Radio
271 Listeners
Hanselminutes with Scott Hanselman
383 Listeners
The Changelog: Software Development, Open Source
289 Listeners
Data Skeptic
480 Listeners
Software Engineering Daily
623 Listeners
The Cloudcast
151 Listeners
Talk Python To Me
585 Listeners
Thoughtworks Technology Podcast
43 Listeners
Python Bytes
215 Listeners
Y Combinator Startup Podcast
226 Listeners
Syntax - Tasty Web Development Treats
987 Listeners
Kubernetes Podcast from Google
182 Listeners
.NET Rocks!
244 Listeners
The Stack Overflow Podcast
63 Listeners
The Real Python Podcast
142 Listeners