Episode 31: Understanding Cloud Native Security Basics

Episode 31 December 23, 2020 00:32:14
Episode 31: Understanding Cloud Native Security Basics
SilverLining IL
Episode 31: Understanding Cloud Native Security Basics
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Benjy Portnoy

Guest Title: Sr. Director, Solution Architects

Company: Aqua Security

Abstract

A cloud-native security strategy entails protecting the infrastructure, build, and running workloads. In this episode, we spoke with Benjy Portnoy, Sr Director of Solution Architects at Aqua Security regarding cloud-native security fundamentals. We also delve into various attacks identified in the recently published Cloud Native Threat Report by Aqua's security research team, Nautilus.

Timing

0:00 introducing our guest

2:50 what is cloud native security

5:11 Sorting out between CWPP, CSPM & DevSecOps

8:01 Protecting the build, the platform and workload

10:30 Understanding what is CASB 

12:45 diving into the kinsing attack

29.11 Summary and last words

Other Episodes

Episode 1

November 04, 2018 00:37:41
Episode Cover

Episode 1: Security Challenges With The Growing World Of Serverless Functions

Attendees Guest: Ory Segal, Puresec Guest title:  CTO & Co-Founder at PureSec Company:  Puresec is the global leader in serverless architectures security.   Serverless functions are one the most interesting things that is happening in architecture of application development. With Serverless, application developers can stop worry about the underlying infrastructure and scalability of the application, but they must address other risks at application level. In this podcast we are interviewing Puresec CTO, Ory Segal , co-author of the top 12 risks to serverless applications   Timing 0:00 – 2:35 – intro 2:35 – 8:05 - what are Serverless functions 8:05- 12:20 - how Serverless is different (security wise) 12:20 -  19:40 - Serverless risks & threats 19:40 -  24:00 - common mistakes and misconfiguration with Serverless 24:00 – 29:30 - Serverless effect on people, process and technology 29:30 – 37:00 – Summary and conclusions ...

Listen

Episode 4

July 09, 2019 00:39:27
Episode Cover

Episode 4: Kubernetes On Steroids

Attendees Guest: Demi Ben Ari Guest title: CTO Company: Panorays Abstract K8 is rapidly becoming the leading orchestration tool and infrastructure for many companies applications. K8 bring tremendous advantages, provide operations with flexibility and enabling multi cloud deployments. But with all that good there are also challenges. In this podcast we talk with Demi Ben Ari, Founder and R&D at Panorays, A saas company that deployed K8 as infrastructure for fleet of scanners and crawlers. Demi will share his experience with the platform and steps he took in order to utilize most benefits from K8. ...

Listen

Episode 45

January 26, 2022 00:42:16
Episode Cover

SilverLining Episode 45: Incident response at scale

Guest: Omri Segev Moyal Guest title: Co-Founder and CEO at Profero Language: English   Abstract Incident response and forensics of cloud breaches is one of the most challenging topics in Information security. In this episode, (recording date Aug 2021) Omri Segev Moyal, co-founder & CEO at Profero, shares fascinating stories regarding recent incidents his team was involved in and provides insights, recommendations and best practices that are really eye opening for any organization out there.    ...

Listen