Completed
security is not just an engineering job get to meet your legal team and your PR team and sell security to the business • and compromise • work with product team
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
How to Work in Cloud Native Security - Demystifying the Security Role
Automatically move to the next video in the Classroom when playback concludes
- 1 How to Work in Cloud Native Security: Demystifying the Security Role Justin Cormack, Docker
- 2 How to Work in Cloud Native Security Demystifying the security role
- 3 working as a sysadmin in a university back in the days when every machine had public IP addresses • was an interesting target for people as we had lots of bandwidth not what I was expecting, which wa…
- 4 bringing security to a wider community working on Noise Protocol Framework capability based security lots to learn!
- 5 Most important things
- 6 for both offensive and defensive security, knowing an area in depth is hugely important • separates the script kiddies from the experts • the security issues are on the boundaries of the usual • play…
- 7 empathy security is unimportant most of the time • the best security is just there supporting people, it is not extra work for them
- 8 just breaking things is not sufficient fixing things is much harder you get exposed to the world of compromise • wanting to burn everything down is a fine thing, but it's not going to happen i
- 9 security is not just an engineering job get to meet your legal team and your PR team and sell security to the business • and compromise • work with product team
- 10 Demand for security people
- 11 What is cloud native security?
- 12 understand the threat model security is quality o handle errors and the unexpected o understand the issues in domain o write security tests threat • spend time attacking learn from external audits
- 13 you cannot tell anyone about what you do a lot of the time • not enough people, so often overworked • live away from the happy path
