云安全可见性：我们的云环境究竟是如何配置的？.pdf

《云安全可见性：我们的云环境究竟是如何配置的？.pdf》由会员分享，可在线阅读，更多相关《云安全可见性：我们的云环境究竟是如何配置的？.pdf（29页珍藏版）》请在三个皮匠报告上搜索。

1、Visibility in Cloud SecurityDanielle SudaiSecurity Operations ManagerDeliverooHow exactly our cloud environments are configured to prevent cybersecurity breaches?CSPM FundamentalsWelcome!About me Danielle Sudai she/herSecurity OperationsManagerDevSecOps EngineerMentorPublic Speaker2Learning objectiv

2、esA history lessonHacks in the wildBasic security terms3CSPM LifecycleAsking the right questionsCSPM flow from a developers perspectiveBest PracticesCloud Native Solutions Agenda2 Why1 Overview3 What4 How5 Summary6 Q&A Why?OverviewAnalyse APIs to identify misconfigsMeasure&Analyse RisksLearning Obje

3、ctivesUnderstand Security Posture Management Create use-cases EvaluateSolutionsFocus on practiceWhy?Why?2005Today9The most known cloud security breaches Real Estate Wealth Network leaked 1.5 billion records in 2023Toyota Exposed 260,000 Customer Data in 2023Capital one fined$80 million for 2019 hack

4、 of 100 million credit card applicationsUnsecured Estee Lauder Database Exposed 440 Million Records10Some basic termsA Threat is a malicious or negative event that takes advantage of a vulnerability.Finally,the Risk is the potential for loss and damage when the threat does occur.Vulnerability is a w

5、eakness,flaw or other shortcoming in a system which exposing your org to threats Why?What?CSPMCloud Security Posture Management 14CSPM,LifecycleInventoryScannerEnforceDetect(Explain)Forseti,Google Cloud Notify15Asking the right questionsWhatWhereWhenWhere all organisation cloud assets are stored?Whe

6、re credentials are stored?Where sensitive data is stored?When I start scanning?When security testing in proceeded?When shall we define misconfiguration as an incident?How often the scanning will take place?What data we need?What will be detected?What standards we should followIt all requires collabo