Two weeks of training and 14 courses available in San Francisco - Mar. 16-27. Save $300 thru 1/22!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Cloud Security Vulnerabilities, Management, and Communication

  • Wednesday, December 18th, 2019 at 3:30 PM EST (20:30:00 UTC)
  • David Hazar
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!

Overview

While many organizations are still struggling to manage vulnerabilities on-premise, there are many that now have to deal with vulnerabilities in the Cloud as well. If this is not the case for your organization today, it may be in the very near future. How does Cloud affect vulnerability management (VM)? Do we need to do anything differently to account for cloud workloads? Is moving to the Cloud going to help or hurt our vulnerability management efforts? What are the options for finding and treating vulnerabilities in the Cloud? Does my reporting and communication need to change? These are common questions I hear as I discuss this important topic with others.

Cloud and development methodologies commonly used in the Cloud definitely require us to adapt some of our processes and technology. However, they also present some unique opportunities to lighten our VM workload and leverage cloud capabilities and services to streamline our treatment processes and procedures. This presentation will provide answers to these questions and highlight some of the impacts and benefits of Cloud on managing security vulnerabilities.

Speaker Bio

David Hazar

David Hazar is a SANS analyst, instructor and co-author of SANS MGT516: Managing Security Vulnerabilities: Enterprise and Cloud. He also is an instructor for SANS SEC540: Cloud Security and DevOps Automation. With close to 20 years of broad, deep technical experience gained from a variety of hands-on roles serving the financial, healthcare and technology industries, his current areas of focus include vulnerability management, application security, cloud security and secure DevOps. He holds the CISSP, GWAPT, GWEB, GMOB, GCIA, GCIH, GCUX, GCWN, GSSP-.NET and GSTRT certifications.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.