Cloud Security Podcast

In this Study Hall - Kelsey Hightower explains is it really complex to learn Kubernetes and whether it's really complex. Nothing but the Honest Trust from Kelsey on this episode. Full Episode on Cloud Security Podcast: www.cloudsecuritypodcast.tv Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy Host Twitter: twitter.com/hashishrajan Guest Twitter:  twitter.com/kelseyhightower Podcast Twitter - @kaizenteq If you want to watch videos of this and previous episodes: - Youtube Channel: https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1

In this episode of the Virtual Coffee with Ashish edition, we spoke with Ashwin Patil (@ashwinpatil) who is a returning guest from Season 1 of the Cloud Security Podcast. Ashwin is a Senior Program Manager at Microsoft (@Microsoft). Last time Ashwin came to speak about Threat Intelligence in Azure - Click here to checkout the Season 1 Episode here. In this episode, Ashwin & Ashish spoke about Threat Detection Pre- Cloud and In Cloud Who should be doing threat hunting? TTP - Tactics Tool and Procedures What is cloud detection research ? Things to consider in Threat Hunting Planning Phase When do yo need a Threat Hunting Team? Azure Sentinel and Threat Hunting Threat Detection Playbooks How to get hands on experience with Azure Sentinel The MITRE Attack Framework KQL - Kusto Query Language Threat Hunting in Azure vs AWS And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with Ohad Maishlish is the CEO & Co-Founder of env0. Host: Ashish Rajan - Twitter @hashishrajan Guest: Ohad Maislish - Linkedin In this episode, Ohad & Ashish spoke about Three Stages DataCentre Evolution Governance in Cloud using IaC Challenges with IaC in companies of different scale - Startup vs Enterprise? How to get started in IaC for Governance in Cloud? Would IaC become a standard for anyone doing cloud deployment? Challenges for organisations looking to implement IaC How to get started on the governance pieces of IaC And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with Kelsey Hightower (@kelseyhightower) is the Staff Advocate at Google Cloud (@GoogleCloud) and co-author of “Kubernetes: Up and Running: Dive Into the Future of Infrastructure.” Host: Ashish Rajan - Twitter @hashishrajan Guest: Kelsey Hightower (@kelseyhightower) In this episode, Kelsey & Ashish spoke about What is Kubernetes and Why is it so popular ? Should Senior Leadership within organisations consider Kubernetes? What are the different stages of Kubernetes complexities for organisation as it grows from Startup to an Enterprise? Kubernetes Security at Application vs Platform Level Kubernetes for a Multi-Cloud Deployment management Does Hybrid Kubernetes exist? How to manage secrets in Cloud and Kubernetes? What is a Kubernetes Control Plane? Serverless, Kubernetes, Dockers and Containers - where are we headed? How can one encourage organisations to use Kubernetes? And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with Yoni Leitersdorf (@yonadavl) who is the CEO & Co-Founder of Indeni Host: Ashish Rajan - Twitter @hashishrajan Guest: Yoni Leitersdorf (@yonadavl) In this episode, Yoni & Ashish spoke about What is digital transformation and why do we need it? Infrastructure as Code and Infrastructure as Code Security What drives digital transformation? Who owns infrastructure as code in organisations? Do security folks need to know how to code? How to do configuration hardening well? How to sell or drive infrastructure as code security to your organisation? How to measure if IAC is being properly implemented in your organisation? The future of Infrastructure as Code And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with John Savill (Linkedin_John Savill) is the Principal Cloud Architect, Author and YouTuber. Host: Ashish Rajan - Twitter @hashishrajan Guest: John Savill (Linkedin_John Savill) In this episode, John & Ashish spoke about How is security different between Cloud Security vs On-Prem Security? How does one track API/User Activity across Azure implementation? What are some of the security products in Azure that are good practices for anyone starting today? So what log must be collected to ensure all API events are collected? What are the best security practice for Identity and Networking in Azure? What Security Frameworks for Azure like CIS exist for Azure? How would Monitoring and Incident Response work in an Azure Deployment ? What are examples of Azure Security Maturity Levels? Creating Content for the technology space, where does one start? And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with Barak Schoster Goihman (@barakschoster) is the Co-Founder and CTO of Bridgecrew (@Bridgecrewio). Host: Ashish Rajan - Twitter @hashishrajan Guest: Barak Schoster Goihman @barakschoster In this episode, Barak & Ashish spoke about What is Infrastructure as Code Security Application Security vs Infrastructure as Code Security - are they same? What is DevSecOps? Where should one start? Ansible? Terraform? Kubernetes? Saltstack? Configuration and Policy as Code - What are these? How to get started on Infrastructure Security? Open source vs Paid product, what should one consider before going down either path? The future of Infrastructure as Code Security? Difference between a DSL and a general purpose programming language? Becoming a successful startup founder as a developer, what are some tips you can share for future startup founders? And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with Toni de la Fuente (@toniblyx) is the Senior Security Consultant at AWS (@AWSCloud) and author of Prowler - AWS Security Tool. Host: Ashish Rajan - Twitter @hashishrajan Guest: Toni de la Fuente @toniblyx  In this episode, Toni & Ashish spoke about What is Cloud Security Assessment? The story behind the creation of Prowler and what Prowler does? How is Prowler different to CIS benchmark? How to set up an effective incident response plan? How to respond to forensic collection evidence? And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Twitch Channel: https://lnkd.in/gxhFrqw - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with Nicholas McLaren (Linkedin - nmclarencys) is the Cloud Security Engineer, ByteChek(@Bytechek). Host: Ashish Rajan - Twitter @hashishrajan Guest: Nicholas McLaren (Linkedin - nmclarencys In this episode, Nick & Ashish spoke about What qualifications do you need to become a cloud security engineer? Degrees, certifications etc How to network effective to secure your 1st cloud security role? Network in the world of Covid-19. A day in the life of a Cloud Security Engineer Soft skills required by Cloud Security Engineers How to get recruiters and hiring managers to notice you? And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Twitch Channel: https://lnkd.in/gxhFrqw - Youtube Channel: https://lnkd.in/gUHqSai

In this episode of the Virtual Coffee with Ashish edition, we spoke with Michael Fraser (@itascode) is the Chief Architect, Co-Founder at refactr (@RefactrIT). Host: Ashish Rajan - Twitter @hashishrajan Guest: Michael Fraser - @itascode  In this episode, Michael & Ashish spoke about What is DevSecOps? What is Kubernetes? Why would you use Kubernetes? What should a Kubernetes Deployment look like when done right from a security perspective? The building blocks of making Kubernetes part of your CICD pipeline. Benchmarks to use to measure maturity of organisations And much more… ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv Twitter - @kaizenteq @hashishrajan If you want to watch videos of this and previous episodes: - Twitch Channel: https://lnkd.in/gxhFrqw - Youtube Channel: https://lnkd.in/gUHqSai