The Long and Windy Road to Cloud Native Security
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore the complexities of establishing and maintaining a robust Cloud Native Security policy in this 23-minute conference talk. Delve into the importance of organizational buy-in, from top leadership to implementers, and learn how to effectively engage with Infosec to create a scalable security program. Discover the structure of information security programs, their interactions within organizations, and how these translate into defensive procedures. Gain insights on collaborating with Infosec to improve overall security posture and leveraging them as allies in your Cloud Native journey. Examine topics such as the CIA Triad, Risk Management, Zero Trust, and Declarative Policy Control. Learn strategies for engaging with upstream communities, like the CNCF Security TAG's Security Controls Catalog, to enhance your security practices. Understand the value of starting small, sharing findings, and fostering collaboration to build a superior Cloud Native Security framework.
Syllabus
Intro
Engagement
CIA Triad
Risk Management
Do Care and Due Diligence
Perimeter Defense
Zero Trust
Defining Zero Trust
Identity Policy and Control
Declarative Policy
Control
Model Trust
Cooperation
Start small
Share findings
Policy and standards
Engage with the community
Help your peers
Collaboration is key
Superior
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Introduction to FinanceUniversity of Michigan via Coursera Information Security and Risk Management in Context
University of Washington via Coursera Financial Engineering and Risk Management
Columbia University via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Caries Management by Risk Assessment (CAMBRA)
University of California, San Francisco via Coursera