Explore strategies for implementing a rugged DevOps approach to cloud security in this BSidesSF 2016 conference talk. Learn how to integrate security into development and deployment processes, understand your organization's value to attackers, define the security battlefield to your advantage, identify potential DevOps allies, embrace continuous security cycles, automate security acceptance tests, and operationalize security alerts and remediation efforts. Discover the importance of continuous monitoring, security as code, dynamic firewall changes, and automated defense in achieving a more agile security posture. Gain insights into cloud monitoring techniques, identity management, compliance, and the value of treating security as an ongoing journey rather than a separate step in the launch process.
Overview
Syllabus
Intro
What is Cloud
Security
Security Innovation
How to freshen the stack
How scary is that
Security as code
Amazon JSON
Security Roles
Ruggedization
Refresh the approach
Continuous scanning
Identity changes
Cloud Monitoring Tech
Dynamic Firewall Changes
Config Management Communities
Manual Audit
Compliance
Automated Defense
Rich Mullins
Security is a journey
Automate security behaviors
Wrap up
Taught by
Security BSides San Francisco
