Trova il tuo prossimo podcast preferito

Abbonati oggi e leggi gratis per 30 giorni
Security Operations with Elliott Abraham and Jason Bisson: We're discussing security operations on the podcast this week with your hosts Priyanka Vergadia and Mark Mirchandani.

Security Operations with Elliott Abraham and Jason Bisson: We're discussing security operations on the podcast this week with your hosts Priyanka Vergadia and Mark Mirchandani.

A partire dalGoogle Cloud Platform Podcast


Security Operations with Elliott Abraham and Jason Bisson: We're discussing security operations on the podcast this week with your hosts Priyanka Vergadia and Mark Mirchandani.

A partire dalGoogle Cloud Platform Podcast

valutazioni:
Lunghezza:
35 minuti
Pubblicato:
May 27, 2020
Formato:
Episodio podcast

Descrizione

We’re discussing security operations on the podcast this week with your hosts Priyanka Vergadia and Mark Mirchandani. They’re joined by Elliott Abraham and Jason Bisson who start the interview explaining that they created the CLAM framework to help customers use Google Cloud security features to their fullest potential to create safe projects and relaxed clients.

The CLAM (Cloud Logging Alerting and Monitoring) framework came about specifically to help customers transition products to, and run products securely in, the cloud. Using the Mitre GCP Matrix, the security team addressed each element with GCP product solutions, from initial access to persistence and beyond. CLAM is GCP specific, taking into account the default security measures GCP already provides and supplementing these measures with appropriate procedures for each client. Once the framework is in place and things are secure, clients can build on that with operational controls, such as SRE best practices.

Elliott explains the shared security model and how clients can shift more of the security responsibility to the cloud service provider by employing more managed services. Jason tells us about VPC Service Controls and how they allow clients to set specific security rules such as from where data can be accessed. They go on to describe the GCP Security Command Center and the tools available there.

We wrap up the interview with some tips from our guests, including what to do if you are compromised.



Elliott Abraham

Elliott Abraham is a Security and Compliance Specialist based in Atlanta. Elliott works with Financial Services, Healthcare and Life Sciences and other Select Accounts migrating to or expanding their footprint on the Google Cloud Platform. Elliott has helped many customers to operationalize GCP Security solutions in alignment with their security, compliance, and regulatory requirements.

Jason Bisson

Jason Bisson is a Security and Compliance Specialist based in NYC. He works with Financial Services, Healthcare, Government, and Retail customers to explain the security, compliance, and regulatory abilities of Google Cloud Platform.

Cool things of the week


Announcing Google Cloud Next ‘20: OnAir blog
Celebrating a decade of data: BigQuery turns 10 blog


A very special BigQuery Day (The Data Show, w/ Felipe Hoffa & Yufeng Guo) video



Interview


CLAM Framework pdf
Mitre site
Mitre ATT&CK site
Mitre GCP Matrix site
SRE Handbook site
VPC Service Controls site
Cloud Audit Logs site
Cloud Data Loss Prevention site
GCP Podcast Episode 218: Chronicle Security with Dr. Anton Chuvakin and Ansh Patniakpodcast
GCP Podcast Episode 221: BeyondCorp with Robert Sadowski podcast


Tip of the week

Yuri Grinshteyn talks about the new logging feature.

What’s something cool you’re working on?

Priyanka is working on Building an Unbreakable DevOps Pipeline with Google Cloud.

Mark is working on more videos and will be speaking at Next.
Pubblicato:
May 27, 2020
Formato:
Episodio podcast