EP67 Cyber Defense Matrix and Does Cloud Security Have to DIE to Win?

Guest:

• Sounil Yu, CISO and Head of Research at JupiterOne

Topics:

• How does your Cyber Defense Matrix apply to cloud security? Are things easier or harder?
• Cloud (at least the cloudy-cloud, also called cloud native) definitely supports "Distributed Immutable Ephemeral" (DIE) - your new creation, how does that change security and CDM?
• Cyber resilience generates a lot of confusion, how do you define and describe it?
• BTW, is the cloud more or less cyber resilient based on your definition?
• Is invisible security a good thing? Can we ever have it? When should security be visible?
• Intuitively, security and safety are not the same. So, what is the difference between cyber safety and cyber security? What is cyber safety, really?

Resources:

• Cyber Defense Matrix
• Security DIE Triad
• Container Security: The Past or The Future? (ep54)
• This Binary Legit? How Google Uses Binary Authorization and Code Provenance (ep66)
• What is the useful definition of "cyber resilience"? poll
• Is the cloud just somebody else's computer? Poll
• Cattle vs Pets - DevOps Explained
• Gartner CIA-PSR model
• The 2022 State of Cyber Assets Report
• Cyber Defense Matrix: The Essential Guide to Navigating the Cybersecurity Landscape
• "Antifragile" book
• "Thinking, Fast and Slow" book

"Security Chaos Engineering" book