YoVDO

Compliance Does Not Equal Security (Except When It Might Be) - Rob Clark - USENIX Enigma Conference - 2018

Offered By: USENIX Enigma Conference via YouTube

Tags

USENIX Enigma Conference Courses DevSecOps Courses Compliance Courses IT Compliance Courses Cloud Deployment Courses Cloud Security Courses

Course Description

Overview

Explore a thought-provoking conference talk from USENIX Enigma 2018 that challenges the notion of compliance equating to security in cloud environments. Delve into IBM's innovative approach to restructuring their security strategy, aligning with NIST guidance to support DevSecOps and enhance cloud deployment security. Learn how IBM built a security team responsible for understanding and measuring controls across their vast cloud infrastructure, comprising over 200 services and 53 data centers. Discover the lessons learned, results achieved, and future steps in this 21-minute presentation by Rob Clark, Cloud Security Leader at IBM, as he shares insights on decreasing complexity, driving security feature functionality, and making compliance more accessible and effective in cloud security management.

Syllabus

Intro
Compliance is not equal to Security
IBMs Agile Model
Compliance vs Security
Will Compliance Save Us
How Do We Make Compliance Accessible
How Do We Build Security
Lessons Learned
Results
Next Steps


Taught by

USENIX Enigma Conference

Related Courses

DevOps CI/CD Pipeline: Automation from development to deployment
Universidad Anáhuac via edX DevOps Pipeline: Automatización hasta el despliegue
Universidad Anáhuac via edX Exploring the Benefits of Continuous Security and Compliance for Cloud Infrastructure
Pluralsight Integrating Incident Response into DevSecOps
Pluralsight DevSecOps: Building a Secure Continuous Delivery Pipeline
LinkedIn Learning