Cloud Security

 

Education Level: Advanced

4410 - 10 Reasons Why Micro-Segmentation and Clouds are Not Secure

Monday, September 25
4:30 PM - 5:30 PM

Micro-segmentation and cloud architectures decrease threat landscape by design. However, this smaller threat surface creates a false sense of good security. This presentation will clearly demonstrate 10 security controls that are missing in such architectures. Standard private (OpenStack and NSX) and public cloud architectures (AWS and Azure) with micro-segmentation will be presented and analyzed for 10 security controls that are missing. They include identification, authentication, authorization, vulnerability, anti-virus, advance persistence threat detection, denial of service and data protection, visibility with analytics and security system automation.

Attendees will learn how to add these 10 controls to micro-segmentation to architect strong security. We'll show how implementation of most of these controls may be used to set a foundation for zero-trust model implementation.

Learning Objectives:

Predrag "Pez" Zivic

Sr. Security Solutions Architect
ex - Palo Alto Networks

Over the past 28-plus years of his security career, Predrag "Pez" Zivic has worked for Global Fortune 1000 clients as a senior advisor on cybersecurity, risk and governance. As a recognized expert in technology, security and privacy methodologies, and compliance, Pez has been instrumental in the launch and successful management of security and risk groups at Scienton, Secure-IT, GE Capital and Platinum Technology. He authored two patents: Information Security Model® and Trust Model Router®. At Scienton, Pez has successfully managed and led Risk Cube® software product development and marketing. He introduced new industry security paradigms: “Service Defense in Depth,” “DOS Attack Classification” and “Using WAF to Defend Against Malware.” At Palo Alto Networks, he is working on improving Docker, public, private and hybrid cloud security. Currently working on security at the stealth startup.
Pez was among the first 100 professionals in the world to be ISO17799/BS7799 ISMS Lead Audit-certified. He prototyped the Certified Solaris Security Administrator certification and includes the CISSP and CISA among his certifcations. He presented at the CIO SUMMIT, Managing IT Risk, EICAR conference, SANS conference, ISSA seminars, Regional Atlantic Council , InfoSecurity Canada 2004 and 2005, Nebraska CERT, SPIE Symposium, TASK, OpenGroup, ECIW2011 Beijing, LASCON OWASP, AltSecCon and others.

Presentation(s):

Send Email for Predrag "Pez" Zivic


Assets

4410 - 10 Reasons Why Micro-Segmentation and Clouds are Not Secure

MP3 Audio Slides Video

Attendees who have favorited this

Please enter your access key

The asset you are trying to access is locked. Please enter your access key to unlock.

Send Email for 10 Reasons Why Micro-Segmentation and Clouds are Not Secure