The Paradox of Securing Cloud Workloads

  • Wednesday, 26 May 2021 10:30AM EDT (26 May 2021 14:30 UTC)
  • Speakers: John Pescatore, Netta Schmeidler

Cloud workloads have become an essential engine that drives efficiency and scale for many businesses. They can also contain an organization\'s most valuable assets and underpin its operational capabilities. At the same time, these are becoming the ultimate targets of many cybercriminals. Yet strategies for defending them often rely on client-grade technologies like AV and EDR. Furthermore, when businesses use public cloud services, there tends to be a lack of understanding on exactly which aspects of securing these assets are the responsibility of the service provider and the business. These issues expose the enterprise at a time when many companies are migrating workloads to the cloud. Gartner\'s model for Cloud Workload Protection Platforms offers insights on the must-haves and nice-to-haves of server protection, on-prem and in the cloud. It also points to ways of safeguarding them from unknown attacks by using deterministic technology like moving target defense.

In this session Morphisec's VP of Product, Netta Schmeidler will discuss the Paradox of Securing Cloud Workloads that has led to many businesses being left with insufficient security controls on their most valuable assets. In this session, you will learn:

  • The divergent strategies for EPP and CWPP
  • How allowlisting can benefit cloud workloads, and where it leaves gaps
  • How to build a security strategy that meets the unique requirements of cloud workloads without compromising on security
  • How to build and maintain a shared responsibility model for security with your cloud vendors
  • How protect servers from lateral movement as well as direct attacks on the admins who use them
  • How to protect against modern and unknown threats, exploits, and fileless attacks that are targeting cloud workloads