securing hybrid workloads · 2017. 10. 6. · securing hybrid workloads why is a consistent view...
TRANSCRIPT
Securing Hybrid Workloads
Why is a consistent view important?
Why is continuous security important?
32
12
47
What is the cloud shared responsibility model and how does it impact me?
How do I select a solution?
?
Native multi-cloud -Cloud provider integration
Microservices – Enables continuous assessment
Agentless – Less bloat and more secure
Rapid Assessment –Lowest time to baseline
Open APIs – DevSecOps
Broad coverage –OSs and frameworks
How do I reduce my attack surface –on-premise and multi-cloud, bare-metal and VM, and containers?
Now, I’m secure
In an hour, am I still secure?
I know I’m always secure
Conflicting Guidance Weak Links
Continuous Security Assessment and Remediation for Hybrid Workloads
On-Premise IaaS PaaS SaaSApplications
DataRuntime
MiddlewareO/S
VirtualizationServersStorage
Networking
Your responsibility
in blue
Cloud provider
responsibility in purple
65
65
65
CorrelatedGuidance
Single unified view across all cloud providers and on-premise
Workloads
APIs
How do I enable this?
Cloud Discovery andSecurity Policy Enforcement(IaaS and PaaS)
RDS S3 VPC EBS IAM EC2
Reporting
Inspector CloudTrail CloudWatch
SecurityEventMonitoring
SecurityEventAssessment
@ AWS