Sign up to save your podcasts
Or
Share Best Practices for Securing AWS Cloud with Eric Carter
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Best Practices for Securing AWS Cloud with Eric Carter
Eric Carter of Sysdig joins Corey to tackle the evolving landscape of cloud security, particularly in AWS environments. As attackers leverage automation to strike within minutes, Sysdig focuses on real-time threat detection and rapid response. Tools like Runtime Insights and open-source Falco help teams identify and mitigate misconfigurations, excessive permissions, and stealthy attacks, while Kubernetes aids in limiting lateral movement. Eric introduced the “10-minute benchmark” for defense, combining automation and human oversight. Adapting to constant change, Sysdig integrates frameworks like MITRE ATT&CK to stay ahead of threats. Corey and Eric also discuss Sysdig’s conversational AI security analyst, which simplifies decision-making.
Show Highlights
(0:00) Intro
(0:32) Sysdig sponsor read
(0:51) What they do at Sysdig
(3:28) When you need a human in the loop vs when AI is useful
(5:12) How AI may affect career progression for cloud security analysts
(8:18) The importance of security for AI
(12:18) Sysdig sponsor read
(12:39) Security practices in AWS
(15:19) How Sysdig’s security reports have shaped Corey’s thinking
(18:10) Where the cloud security industry is headed
(20:03) Cloud security increasingly feeling like an arms race between attackers and defenders
(23:33) Frustrations with properly configuring leased permissions
(28:17) How to keep up with Eric and Sysdig
About Eric Carter
Eric is an AWS Cloud Partner Advocate focused on cultivating Sysdig’s technology cloud and container partner ecosystem. Eric has spearheaded marketing efforts for enterprise technology solutions across various domains, such as security, monitoring, storage, and backup. He is passionate about working with Sysdig's alliance partners, and outside of work, enjoys performing as a guitarist in local cover bands.
Links
- Sysdig's website: https://sysdig.com/
- Sysdig's AWS Cloud Security: https://sysdig.com/ecosystem/aws/
- Sysdig’s 5 Steps to Securing AWS Cloud Infrastructure: https://sysdig.com/content/c/pf-5-steps-to-securing-aws-cloud-infrastructure?x=Xx8NSJ
Sponsor
Sysdig: https://www.sysdig.com
View all episodes
By Corey Quinn
4.7
9292 ratings
Eric Carter of Sysdig joins Corey to tackle the evolving landscape of cloud security, particularly in AWS environments. As attackers leverage automation to strike within minutes, Sysdig focuses on real-time threat detection and rapid response. Tools like Runtime Insights and open-source Falco help teams identify and mitigate misconfigurations, excessive permissions, and stealthy attacks, while Kubernetes aids in limiting lateral movement. Eric introduced the “10-minute benchmark” for defense, combining automation and human oversight. Adapting to constant change, Sysdig integrates frameworks like MITRE ATT&CK to stay ahead of threats. Corey and Eric also discuss Sysdig’s conversational AI security analyst, which simplifies decision-making.
Show Highlights
(0:00) Intro
(0:32) Sysdig sponsor read
(0:51) What they do at Sysdig
(3:28) When you need a human in the loop vs when AI is useful
(5:12) How AI may affect career progression for cloud security analysts
(8:18) The importance of security for AI
(12:18) Sysdig sponsor read
(12:39) Security practices in AWS
(15:19) How Sysdig’s security reports have shaped Corey’s thinking
(18:10) Where the cloud security industry is headed
(20:03) Cloud security increasingly feeling like an arms race between attackers and defenders
(23:33) Frustrations with properly configuring leased permissions
(28:17) How to keep up with Eric and Sysdig
About Eric Carter
Eric is an AWS Cloud Partner Advocate focused on cultivating Sysdig’s technology cloud and container partner ecosystem. Eric has spearheaded marketing efforts for enterprise technology solutions across various domains, such as security, monitoring, storage, and backup. He is passionate about working with Sysdig's alliance partners, and outside of work, enjoys performing as a guitarist in local cover bands.
Links
- Sysdig's website: https://sysdig.com/
- Sysdig's AWS Cloud Security: https://sysdig.com/ecosystem/aws/
- Sysdig’s 5 Steps to Securing AWS Cloud Infrastructure: https://sysdig.com/content/c/pf-5-steps-to-securing-aws-cloud-infrastructure?x=Xx8NSJ
Sponsor
Sysdig: https://www.sysdig.com
More shows like Screaming in the Cloud
View all
Software Engineering Radio
270 Listeners
Hanselminutes with Scott Hanselman
383 Listeners
The Changelog: Software Development, Open Source
289 Listeners
a16z Show
1,087 Listeners
Software Engineering Daily
625 Listeners
The Cloudcast
153 Listeners
Thoughtworks Technology Podcast
43 Listeners
Y Combinator Startup Podcast
226 Listeners
Syntax - Tasty Web Development Treats
986 Listeners
AWS Podcast
203 Listeners
AWS Morning Brief
80 Listeners
The Stack Overflow Podcast
64 Listeners
Dwarkesh Podcast
508 Listeners
Oxide and Friends
63 Listeners
The AI Daily Brief: Artificial Intelligence News and Analysis
597 Listeners