Episode 2: Security Challenges Of Moving From Monolith To Micro-Services

Episode 2 April 22, 2019 00:33:27
Episode 2: Security Challenges Of Moving From Monolith To Micro-Services
SilverLining IL
Episode 2: Security Challenges Of Moving From Monolith To Micro-Services
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Yuval Reut, 

Guest title:  CIO & CISO 

Company:  Riskified 

Micro-services can bring enormous benefits into the organizations – giving flexibility and driving innovation. But Micro-services are also challenging from a security point of view. In this podcast, Yuval Reut, CIO & CISO for Riskified, will share his experience of moving an entire monolith application to a group of integrated micro services.

Timing:

0:00 – 3:39 - intro and learning about Riskified

3:39 - 9:55 - CISO & CIO positions at SaaS startups

9:55 - 12:20 - moving from Monolith to Microservices – reasons for the move.

12:20 - 19:30 - technology challenges when moving to Micro services

19:30 - 25:00 - People challenges when moving to Micro services

25:00 – 29:35 - Process challenges when moving to Micro services       

29.40 – 33:00 - Summary and conclusions

Episode Transcript

No transcript available...

Other Episodes

Episode 38

May 12, 2021 00:32:43

SilverLining Episode 38: Cloud Native Security Foundations

Attendees Guest: Gadi Naor  Guest Title: VP Software Engineering, Cloud Security @ Rapid7 Topic: Cloud Native Security Foundations Abstract Lately, The CNCF (Cloud Native Computing Foundation) released the cloud native security whitepaper: the first release of security guidelines for organizations who adopt cloud native approaches. In order to better understand the guidelines, we hosted Gadi Naor, VP Software Engineering, Cloud Security @ Rapid7, and co-author of the guidelines, for a conversation about what is cloud native security and why & how organizations should adopt this approach. ...

Listen

Episode 33

January 18, 2021 00:31:24

Episode 33: Researching Cloud Vulnerabilities

Attendees Guest: Asaf Hecht  Guest Title: Security research team leader Company: CyberArk  Abstract With the growth of cloud services, more knowledge is gathered on vulnerabilities and misconfigurations in cloud infrastructure. A great deal of this knowledge is coming from cloud security researchers. In this episode, we host Asaf Hecht, Security research team leader At Cyberark, for a conversation about cloud security research and the vulnerabilities they disclose are various cloud vendors.  ...

Listen

Episode 6

August 12, 2019 00:33:45

Episode 6: The Cloud Octagon Model Framework for Cloud Adoption

Attendees Guest: Olaf Streutker Guest title: CISO Advisor Company: ABN Amro Abstract The Cloud Octagon Model is a new framework for cloud adoption (mostly SaaS adoption). The model was designed in cooperation between ABN-Amro and the Cloud Security Alliance and assists organizations to identify, represent, and assess risks in the context of their cloud implementation across multiple factors by introducing a logical approach to holistically dealing with security aspects involved in moving to the cloud. Link to CSA Cloud Octagon Model: https://cloudsecurityalliance.org/artifacts/cloud-octagon-model/   Timing   0:00 Intro and introducing the guest and ABN Amro cloud adoption methodology 12:10 The evolution of the Cloud Octagon Model and basic concepts 11:28  How ABN-Amro are dealing with IaaS/PaaS vs. SaaS 15:30 The different phases of the Cloud Octagon Model: Classification 20.30 Core banking applications in the cloud 24.20 The different phases of the Cloud Octagon Model 31.20 Summary and conclusions   ...

Listen