Sign up to save your podcasts
Or
Share EP80 CISO Walks Into the Cloud: Frustrations, Successes, Lessons ... And Does the Risk Change?
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
EP80 CISO Walks Into the Cloud: Frustrations, Successes, Lessons ... And Does the Risk Change?
Guest:
- David Stone, Staff Consultant at Office of the CISO, Google Cloud
Topics:
- Speaking as a former CISO, what triggered your organization migration to the cloud?
- When did you and the security organization get brought in?
- How did you plan your security organization journey to the cloud?
- Did you take going to Cloud as an opportunity to change things beyond the tools you were using?
- As you got going into the cloud, what was the hardest part for your organization ?
- What was most surprising? Good surprise and bad surprise?
- How did you design security controls for the cloud?
- How do you validate and verify security controls in the cloud?
- How did you incorporate your cloud environment into your SOC’s responsibility
- Having covered all that tactical terrain, one final strategic question: is moving to Cloud a net risk reduction? Can it be?
Resources:
- “How CISOs need to adapt their mental models for cloud security”
- “Megatrends drive cloud adoption—and improve security for all”
- “EP47 Megatrends, Macro-changes, Microservices, Oh My! Changes in 2022 and Beyond in Cloud Security“ (ep47)
- “CISO’s Guide to Cloud Security Transformation“ paper [PDF]
- Google SRE book
- GCAT site
View all episodes
By Anton Chuvakin
4.8
3838 ratings
Guest:
- David Stone, Staff Consultant at Office of the CISO, Google Cloud
Topics:
- Speaking as a former CISO, what triggered your organization migration to the cloud?
- When did you and the security organization get brought in?
- How did you plan your security organization journey to the cloud?
- Did you take going to Cloud as an opportunity to change things beyond the tools you were using?
- As you got going into the cloud, what was the hardest part for your organization ?
- What was most surprising? Good surprise and bad surprise?
- How did you design security controls for the cloud?
- How do you validate and verify security controls in the cloud?
- How did you incorporate your cloud environment into your SOC’s responsibility
- Having covered all that tactical terrain, one final strategic question: is moving to Cloud a net risk reduction? Can it be?
Resources:
- “How CISOs need to adapt their mental models for cloud security”
- “Megatrends drive cloud adoption—and improve security for all”
- “EP47 Megatrends, Macro-changes, Microservices, Oh My! Changes in 2022 and Beyond in Cloud Security“ (ep47)
- “CISO’s Guide to Cloud Security Transformation“ paper [PDF]
- Google SRE book
- GCAT site
More shows like Cloud Security Podcast by Google
View all
Risky Business
365 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
626 Listeners
The Cloudcast
152 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
366 Listeners
CyberWire Daily
1,009 Listeners
AWS Podcast
201 Listeners
Click Here
408 Listeners
Cybersecurity Today
166 Listeners
Kubernetes Podcast from Google
181 Listeners
CISO Series Podcast
189 Listeners
Hacking Humans
314 Listeners
Defense in Depth
74 Listeners
Cloud Security Podcast
58 Listeners
Cyber Security Headlines
127 Listeners
Risky Bulletin
43 Listeners