Security and Accountability in the Cloud, the SANS 2016 Cloud Security Survey: Part 2 - Changes in Cloud Security
- Wednesday, October 12th, 2016 at 1:00 PM EDT (17:00:00 UTC)
- Dave Shackleford, Steve Grossenbacher, Salim Hafid and Matt Hathaway
You can now attend the webcast using your mobile device!
With more complex workloads in the cloud, are organizations making the necessary changes to monitor and secure those workloads. This two-part webcast explores how both the need for cloud security and its implementation has changed in the past year.
In Part 1, held on Tuesday, October 11 at 1:00 p.m., attendees will learn about the survey results, with special emphasis on breach history and the top threats and challenges associated with cloud environments. Click here to register for Part 1.
In today's webcast, the focus is on how cloud security has changed, both in terms of effectiveness and choice of tools.
In the 2015 survey, half of respondents complained they couldn't see well enough into the cloud to know when a cloud-based workload was in trouble and had no way to respond to trouble they did know about. More than a third had no way to test how secure a workload was, once it moved to the cloud. Encryption and access controls did some good, even in complex environments. But respondents said even those were difficult to apply consistently across a mishmash of workplace/productivity apps, DropBox or other storage services, and a host of other services often chosen by business units rather than IT.
Register for this webcast to learn how and where cloud security has changed from 2015. Attendees will explore the following:
- Available controls and their effectiveness for deployment to secure sensitive information in the cloud
- New capabilities InfoSec professionals need to improve security of cloud applications
You can view the associated whitepaper written by SANS instructor Dave Shackleford using this link. In this paper, he provides analysis of how quickly the cloud security market is maturing and how far it still has to go.
Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.
Steve Grossenbacher is a senior product marketing manager for McAfee's IPS product line within McAfee's Network Security business unit. Steve is responsible for all aspects of bringing McAfee Network Security Platform to market. Joining McAfee with the Entercept acquisition in 2003, Steve has held multiple positions within McAfee from competitive intelligence to technical support. Prior to joining McAfee, Steve held positions with Xerox Engineering Systems in backline and sales engineering. With nearly 10 years' experience working with McAfee's IPS and over 15 years in the security industry, Steve's experience provides him a broad and deep perspective of the network and security industry in general.
Salim Hafid, Manager, Product Marketing, is responsible for Bitglass product marketing and communications strategy. Prior to joining the Bitglass team, Salim held various roles in consumer tech media and product communications. Salim received a B.S. in Economics from Santa Clara University.
Matt Hathaway is a senior manager of Solutions Marketing at Rapid7, having recently transitioned after four years in the Rapid7 Products organization. He moved to Northern Ireland to assist with the company's international expansion and drive Rapid7 Belfast office development. He is a frequent blogger about both Rapid7 products and the expatriation experience. He regularly speaks about security challenges at conferences, including Black Hat USA 2014, SOURCE Dublin 2015 and B-Sides SF 2016. Prior to joining Rapid7, Matt was a member of the Office of the CTO (OCTO) and product management teams for RSA. He has been working in fraud prevention, security and IT for 15 years.