Episode 29: Cloud Identity Governance - understanding challenges

Episode 29 November 25, 2020 00:36:09
Episode 29: Cloud Identity Governance - understanding challenges
SilverLining IL
Episode 29: Cloud Identity Governance - understanding challenges
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Sponsored By:

Attendees

Guest: Arick Goomanovsky

Guest title: Co-Founder & Chief Business Officer

Company: Ermetic

Abstract

In cloud platforms, identity and permissions are the most important control that customers get to implement. Network segmentation and other traditional controls are often ineffective and access to resources is determined by a mixture of roles & policies. This mixture can become very complex and difficult to lock down. In this episode, we are hosting Arick Goomanovsky, Chief Business Officer at Ermetic, to discuss Cloud identity and access challenges, and to review real life examples of what can happen when neglecting identity and access entitlements in cloud infrastructure.

Mail to: [email protected]

Timing:

0:00  Introducing our guest and Ermetic

2:21  Understanding Identity Governance

4:40  Cloud identity challenges

10:55 Dealing with identity challenges by adding visualization and analysis of permissions

16:30 Who are the organizational stakeholders relevant?

22:01 Examples for IAM challenges and outbreaks

22:25 Example 1: Protecting sensitive resources

26:25 Example 2: Third party access

29:49 Example 3: The visibility challenge when using SSO

31:30 Summary and final words

Other Episodes

Episode 52

July 13, 2022 00:32:36
Episode Cover

SilverLining Episode 52: Securing K8’s Deployments

Guest: Leonid Sandler Guest title: CTO, Armosec Topic: Securing K8’s Deployments Language: English   Abstract As K8’s adoption grows and matures, we sat down with Leonid Sandler, CTO and Co-Founder of ARMO, to talk about K8’s security - starting from the shared responsibility model, going through the initial configuration and deployment, and all the way to building a runtime protection solution.  ARMO github page - https://github.com/armosec/kubescape ...

Listen

Episode 21

August 03, 2020 00:26:59
Episode Cover

Episode 21: Building The Next Generation Of Cloud Services

Attendees Guest: Eran Feigenbaum Guest title:  CSO, Oracle Cloud Abstract The first generation of cloud services began about 15 years ago and stretched until now, but it came with many built-in challenges due to lack of maturity and the fact that security was added on top and not present from the start. In this episode we talk with Eran Feigenbaum, CISO of Oracle cloud about the next generation of cloud services - how can we build cloud that is more secure,, immuned to miss-configuration and other pitfalls that are relevant to today's cloud services. Timing: 0:00 introducing our guest 5:40 Generation one of cloud infrastructure 8:40 so what is second generation of cloud infrastructure 10:30 how Oracle is planning to change the cloud market 11:40 how second generation cloud services can help with common mistakes such as misconfiguration 13:35 what cloud provider should do in order to increase security 16:05 how cloud providers can  be proactive with their customers 19:00 handling miss-configuration such as open buckets and lost API’s keys 23:40 summary and last words ...

Listen

Episode 42

October 06, 2021 00:19:48
Episode Cover

SilverLining Episode 42: How to mature devsecops operations

Guest: Hemi Gur-Ary  Guest Title: Co-Founder & CEO at VATA Abstract:  Various organizations around the world are struggling to build & mature their devsecops operations. DSOM (Devsecops Maturity Model) is an OWASP project designed to help organizations plan and prioritize their devsecops strategies. In this episode, Hemi Gur-Ary, co-founder at VATA and senior devsecops consultant, shares his insights about DSOM and how organizations can use it for reshaping their devsecops practices.   ...

Listen