
Sign up to save your podcasts
Or


Serverless computing promises less operational overhead, faster deployment, and infinite scalability — but it doesn't promise security. The shared responsibility model means cloud providers manage the infrastructure, while everything above that line remains squarely in your hands. This episode of Cybersecurity unpacks the specific threats that emerge in serverless environments and what engineering and security teams need to do differently to stay ahead of them. The discussion draws from this in-depth guide on cloud-native serverless security best practices published by the team at SEC.
Here's what the episode covers:
The episode closes with a broader mindset argument: serverless doesn't reduce your security obligations, it transforms them. Organizations that treat serverless security as a future problem tend to discover it's a present one when it's already too late. For more on securing cloud runtime environments, check out the related episode Cloud Egress Control: Policy-as-Code for Secure Runtime Traffic.
SEC
By Eric LamannaServerless computing promises less operational overhead, faster deployment, and infinite scalability — but it doesn't promise security. The shared responsibility model means cloud providers manage the infrastructure, while everything above that line remains squarely in your hands. This episode of Cybersecurity unpacks the specific threats that emerge in serverless environments and what engineering and security teams need to do differently to stay ahead of them. The discussion draws from this in-depth guide on cloud-native serverless security best practices published by the team at SEC.
Here's what the episode covers:
The episode closes with a broader mindset argument: serverless doesn't reduce your security obligations, it transforms them. Organizations that treat serverless security as a future problem tend to discover it's a present one when it's already too late. For more on securing cloud runtime environments, check out the related episode Cloud Egress Control: Policy-as-Code for Secure Runtime Traffic.
SEC