CloudLIVE 2021 is just a few weeks away! Last week, we highlighted some of the event’s customer-led sessions and key training courses focused on cloud financial management. This week, the spotlight shines on cloud security and compliance.
As public cloud adoption continues to rise, organizations are encountering new security and compliance challenges. How you secure your on-premises infrastructure no longer applies to the cloud, where developers now have easy access to a variety of cloud services and tremendous flexibility in how each service can be configured in order to build complex modern applications.
With this in mind, we’ve designed the cloud security and compliance track to address your business’ unique challenges, including customer stories, practical training courses, and opportunities to meet one-on-one with experts from CloudHealth, AWS, Azure, and Carbon Black, as well as hear from security practitioners from Secureworks, Discovery, SaltStack, and more.
Featured cloud security sessions you don’t want to miss
The CloudLIVE 2021 cloud security and compliance track includes sessions with best practices to reduce cloud misconfiguration risks, ensure compliance, mitigate threats, and improve collaboration between IT, security, and developer teams. Below are some of our featured sessions, but you can refer to the detailed agenda online to see when all sessions are aired live in your time zone. And as a reminder, all registrants will also have access to the sessions on-demand, so no matter where you’re located, you won’t have to miss a thing.
How Discovery Manages Distributed Cloud Environments with CloudHealth and Secure State
Johan Marais, Senior Platform Services Manager, Discovery
Discovery, an insurance and financial services company based in South Africa, analyzes customer data to understand behavior and help them lead safer and healthier lives. With business operations worldwide, Discovery delivers its services from multiple cloud environments distributed across 12 countries. Tune in to this session to learn how Discovery’s team of IT and security experts protect customer data and scale cloud operations with CloudHealth by VMware and CloudHealth Secure State.
CloudHealth Secure State not only identifies any potential issues, but it also ranks them in order of risk. It means we’re more effective in focusing our attention on the most critical risks.
Discovery Holdings
Secureworks Consulting: Transform Your Cloud With a Security Mindset
Mihir Mistry, Director, Advisory Services, Secureworks
Jason Wikenczy, Senior Security Advisor – PCI and Cloud SME, Secureworks
Are you interested in learning more about how to maintain a strong security posture as your IT and developer teams migrate their data to the cloud? As organizations continue their digital transformation, Secureworks has partnered with CloudHealth Secure State to help security teams rethink their program strategy and enhance operations to secure assets in private and public cloud environments. Join this session to learn how SecureWorks cybersecurity experts examine customers’ cloud environment and determine areas of risk measured against potential business impact.
You can get a sneak peek into how Secureworks partners with CloudHealth in this video:
https://play.vidyard.com/qJ3L2ZFffAkrTZ7anhjBah
Cloud Security Panel: Trends and Practitioner Guidance
Hadar Freehling, Cloud Security Solution Architect, VMware
Jason Needham, Senior Director, Product Management, Cloud Security Solutions, VMware
Mark Ryland, Director, Office of the CISO, Amazon Web Services
Sandeep Poonen, Head of Cloud Security, VMware
In this panel discussion, we’ll ask public cloud security thought leaders and practitioners from Amazon Web Services and VMware about how they secure complex and dynamic cloud environments. Attend this session to learn about the latest cloud security trends, challenges, best practices, and real-world examples of how you can improve security and compliance for your organization.
Detection to Proactive Remediation: Operationalizing Cloud Security Posture Management
Tai Train, Director, Product Management, Cloud Security Solutions, VMware
Nikhil Girdhar, Group Product Marketing Manager, Cloud Security Solutions, VMware
You know that you can significantly reduce the probability of data breaches by simply configuring the cloud correctly. But how do you really operationalize and automate a process that developers can leverage to fix and prevent misconfigured cloud services? Attend this session to learn how to:
- Attain better visibility into misconfiguration risks and developer mistakes
- Translate security and compliance requirements into company-specific policies
- Prioritize security findings based on risk and business needs
- Engage developers to analyze, fix, and prevent misconfigurations
- Build a feedback loop to optimize cloud security posture management
Cloud Offense Informs Cloud Defense: Learning from Past Attacks to Improve Cloud Security
Teri Radichel, CEO, 2nd Sight Lab
As more organizations move to the cloud, so do the attackers. Cloud security data breaches in recent years have led to massive data and intellectual property loss, increased costs, and infiltration of top government agencies. This presentation will explore the attack vectors and root causes of these breaches. That information will drive the strategies and recommendations for reducing cyber risk and security gaps in your cloud environment. Find out why the move to the cloud is exacerbating cybersecurity problems and how to fix them.
Automated Guest OS Vulnerability Remediation with VMware vRealize Automation SaltStack SecOps
Kendall Lovett, Product Line Marketing Manager, SaltStack
Karl Fultz, Staff Technical Marketing Architect, SaltStack
Too many security breaches are caused by guest OS vulnerabilities and misconfigurations that were known to the organization before the attack. Vulnerability management tools are great at finding and identifying these vulnerabilities, but how can organizations move from finding to actually fixing and reducing their threat surface?
Join this session to learn how VMware vRealize Automation SaltStack SecOps, the compliance and vulnerability management component of vRealize Automation, is helping IT and security teams automate the remediation of critical guest OS vulnerabilities and compliance issues at scale across hybrid and multi-cloud environments.
Level up your skills with CloudHealth training courses
CloudLIVE 2021 offers more than 15 training courses led by CloudHealth experts across cloud financial management, operations, and security. These courses will provide valuable tips and best practices for attendees of all skill levels—whether you’re brand new to CloudHealth or already an experienced administrator.
Here’s a brief preview of the courses that focus on cloud security and compliance:
- Managing FlexOrgs in CloudHealth: Recognize when to use FlexOrgs and learn best practices for building Organizational Units, Role Documents, and User Groups.
- Introduction to CloudHealth Secure State: Navigate through the Secure State platform and learn about the key areas of functionality and how they will benefit you.
- Mitigating risks and wasted costs: Use reports to determine cost optimization opportunities and check for non-compliant infrastructure. Leverage security recommendations and policies to mitigate security risks.
Make sure you’re registered so you can take advantage of all the valuable content the event has to offer.
Can’t wait until the conference? In the meantime, you can explore our resource library and blog, where you can filter to see materials dedicated to addressing all your cloud security and compliance needs. Here are a few of our more popular resources:
- eBook: 7 Best Practices for Cloud Security Posture Management
- Whitepaper: Building a Successful Cloud Infrastructure Security and Compliance Practice
- Article: Are Public Cloud Providers’ Native Security Tools Enough to Keep Your Environment Secure?
You can also reach out to connect with our team of cloud security experts directly. We’d be happy to answer any questions you may have and take you through a brief demo of our solutions.