Sign up to save your podcasts
Or
Share EP140 System Hardening at Google Scale: New Challenges, New Solutions
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
EP140 System Hardening at Google Scale: New Challenges, New Solutions
Guest:
-
Andrew Hoying, Senior Security Engineering Manager @ Google
Topics:
-
What is different about system hardening today vs 20 years ago?
-
Also, what is special about hardening systems at Google massive scale?
-
Can I just apply CIS templates and be done with it?
-
Part of hardening has to be following up with developers after they have un-hardened things – how do we operationalize that at scale without getting too much in the way of productivity?
-
A part of hardening has got to be responding to new regulation and compliance regimes, how do you incorporate new controls and stay responsive to the changing world around us?
-
Are there cases where we have taken lessons from hardening at scale and converted those into product improvements?
-
What metrics do you track to keep your teams moving, and what metrics do your leads look at to understand how you're doing? [Spoiler: the answer here is VERY fun!]
Resources:
-
"Why Shared Fate is a Better Way to Manage Cloud Risk" article (and this too)
-
CIS for GCP
-
GCP IAM Deny
-
CloudSecList by Marco Lancini
View all episodes
By Anton Chuvakin
4.8
3939 ratings
Guest:
-
Andrew Hoying, Senior Security Engineering Manager @ Google
Topics:
-
What is different about system hardening today vs 20 years ago?
-
Also, what is special about hardening systems at Google massive scale?
-
Can I just apply CIS templates and be done with it?
-
Part of hardening has to be following up with developers after they have un-hardened things – how do we operationalize that at scale without getting too much in the way of productivity?
-
A part of hardening has got to be responding to new regulation and compliance regimes, how do you incorporate new controls and stay responsive to the changing world around us?
-
Are there cases where we have taken lessons from hardening at scale and converted those into product improvements?
-
What metrics do you track to keep your teams moving, and what metrics do your leads look at to understand how you're doing? [Spoiler: the answer here is VERY fun!]
Resources:
-
"Why Shared Fate is a Better Way to Manage Cloud Risk" article (and this too)
-
CIS for GCP
-
GCP IAM Deny
-
CloudSecList by Marco Lancini
More shows like Cloud Security Podcast by Google
View all
Security Now (Audio)
2,009 Listeners
Risky Business
372 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
651 Listeners
CyberWire Daily
1,020 Listeners
Smashing Security
319 Listeners
Click Here
416 Listeners
Darknet Diaries
8,059 Listeners
Cybersecurity Today
179 Listeners
Hacking Humans
314 Listeners
CISO Series Podcast
189 Listeners
AWS Podcast
204 Listeners
Defense in Depth
74 Listeners
Cloud Security Podcast
57 Listeners
Cyber Security Headlines
139 Listeners
Risky Bulletin
44 Listeners