Shows
Cloud Security PodcastCloud Security Careers: From Executive Assistant to Head of SecurityIn this episode of the Virtual Coffee with Ashish edition, we spoke with Lisa Hall (@Lisa_H_), the Head of Security, PagerDuty(@PagerDuty).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Twitter: Lisa Hall (@Lisa_H_)
Podcast Twitter - Cloud Security Podcast (@CloudSecPod)
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
...
2021-09-1244 min
Cloud Security PodcastIBM Launches Servers for Hybrid Cloud, Microsoft and Verizon bring 5G Edge Cloud Computing - Cloud Security NewsCloud Security News this week - 8 September 2021
Verizon, a multinational telecommunications giant and Microsoft have teamed up to bring on-prem, private 5G edge cloud computing to business. Their offer is a cloud platform that puts compute and storage services at the edge of the network at the customer premises. This has the potential to offer lower lag time and high bandwidth for demanding applications such as virtual and augmented reality and machine learning.
In Australia, as part of Macquarie bank path to be 100% cloud for IT infrastructure by 2022, they are embedding a 'secure by design' ethos. Secure by d...
2021-09-0802 min
Cloud Security PodcastCloud Security Careers: Skills Required for an Associate Cloud Security EngineerIn this episode of the Virtual Coffee with Ashish edition, we spoke with Zinet Kemal (Linkedin - Zinet-Kemal) is an Associate Cloud Security Engineer at Best Buy (@BestBuy)
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Linkedin: Zinet Kemal (Linkedin - Zinet-Kemal)
Podcast Twitter - Cloud Security Podcast (@CloudSecPod)
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c...
2021-09-0546 min
Cloud Security PodcastIs your Microsoft Azure Cosmos Database Keys Secure? - Cloud Security NewsCloud Security News this week - 1 Sep, 2021
Last Thursday, on the 26th of August 2021 - Microsoft warned thousands of its cloud computing customers, including some of the world's largest companies. that hackers could have the ability to read, change or even delete their main databases. This is due to a vulnerability in the Jupyter Notebook Feature in Microsoft Azure's flagship Cosmos database. Microsoft cannot change those keys by itself, it emailed the customers Thursday telling them to create new ones.
AWS has announced the release of AWS Backup Audit Manager a new feature that allows you to audit a...
2021-09-0102 min
Cloud Security PodcastCloud Hacking eSports | Ultimate Hacking ChampionshipIn this episode of the Virtual Coffee with Ashish edition, we spoke with Igor Rincon (@igor.rincon) creator of Ultimate Hacking Championship (@HackingEsports) & one of the host of UHC - Magno Logan (@magnologan).
Link to Magno's Kubernetes Security Challenge walkthrough
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Twitter: Igor Rincon (@igor.rincon), Magno Logan (@magnologan)
Podcast Twitter - Cloud Security Podcast (@CloudSecPod)
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast
- C...
2021-08-2905 min
Cloud Security PodcastNetwork Security in a Cloud Native WorldIn this episode of the Virtual Coffee with Ashish edition, we spoke with Karthik Prabhakar (@worldhopper) is an Advisor to AccuKnox (@AccuKnox).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Linkedin: Karthik Prabhakar (@worldhopper)
Podcast Twitter - Cloud Security Podcast (@CloudSecPod)
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
Cloud Security A...
2021-08-2651 min
Cloud Security PodcastAWS Re:inforce goes Virtual - Cloud Security NewsCloud Security News this week - 25 Aug, 2021
AWS is launching a new partner competency for managed security service providers (MSSPs) which will make their cloud software solutions and services available in the AWS Marketplace. AWS are coining this an industry first + designed to help partners differentiate themselves in a crowded security market
Default Permissions on Microsoft Power Apps, a cloud-hosted suite of services that allows organizations to create business intelligence applications has exposed 38 million records. This was discovered by an upguard analyst that Open data protocol API is enabled by default
AWS Cancelled re:Inforce Security Conference In Hou...
2021-08-2501 min
Cloud Security PodcastTHINKING OF MOVING A MONOLITH TO CLOUD NATIVE?In this episode of the Virtual Coffee with Ashish edition, we spoke with John Kinsella (@johnlkinsella) is a Cloud Native Contributor, co-host of Security Weekly and CTO of CySense.
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Linkedin: John Kinsella (@johnlkinsella)
Podcast Twitter - Cloud Security Podcast (@CloudSecPod)
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c/clo...
2021-08-2252 min
Cloud Security PodcastDO WE NEED LOGGING? - Building Observability Platform for Scale - AtlassianIn this episode of the Virtual Coffee with Ashish edition, we spoke with Colby Funnel (Linkedin - @Colby) is a Development Manager at Atlassian(@Atlassian).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Linkedin: Colby Funnel (Linkedin - @Colby)
Podcast Twitter - Cloud Security Podcast (@CloudSecPod)
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c/cloudsecuritypodcast?sub_con...
2021-08-1540 min
Cloud Security PodcastWhat is a SECURITY DATA LAKE?In this episode of the Virtual Coffee with Ashish edition, we spoke with Omer Singer (Linkedin-Omer Singer) is the Head of Cyber Security Strategy at Snowflake - The Data Cloud (@SnowflakeDB).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Host Twitter: Ashish Rajan (@hashishrajan)
Guest Linkedin: Omer Singer (Linkedin-Omer Singer)
Podcast Twitter - Cloud Security Podcast (@CloudSecPod)
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.y...
2021-08-0849 min
Cloud Security PodcastSecurity Logging is Changing | Observability & Tracing ExplainedIn this episode of the Virtual Coffee with Ashish edition, we spoke with Ted Young (@tedsuo) is a contributor along with AWS, Google Cloud, Microsoft Azure in the Observability eco-system. He is also the Director of Developer Education at LightStep (@LightStepHQ)
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Linkedin: Ted Young (@tedsuo)
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Che...
2021-08-0148 min
Cloud Security PodcastWHAT IS CYBER RESILIENCY IN CLOUD?In this episode of the Virtual Coffee with Ashish edition, we spoke with Chris Hughes (Linkedin - Chris Hughes) & Dr. Nikki Robinson (Linkedin @dr-nikki-robinson) are the host of Resilient Cyber Podcast (@Resilient Cyber Podcast).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Linkedin: Chris Hughes (Linkedin - Chris Hughes) & Dr. Nikki Robinson (Linkedin @dr-nikki-robinson)
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Che...
2021-07-2538 min
Cloud Security PodcastAWS Security - Managing Threat Detection and ResponseIn this episode of the Virtual Coffee with Ashish edition, we spoke with Ely Khan (@elykahn) is the Principal Product Manager at AWS (@AWS).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Linkedin: @elykahn
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
2021-07-2146 min
Cloud Security PodcastCloud Security RoadMap - Scott PiperIn this episode of the Virtual Coffee with Ashish edition, we spoke with Scott Piper (@0xdabbad00) is a AWS Security Legend who has written AWS Security tools for the community and among other things is a Consultant and Trainer at Summit Route..
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Linkedin: @0xdabbad00
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check o...
2021-07-181h 04
Cloud Security PodcastComparing Cloud Security Tools - CWPP, CSPM, CASB & CNAPPIn this episode of the Virtual Coffee with Ashish edition, we spoke with Patrick Pushor (@CloudChronicle) is the Technical Evangelist at Orca Security (@OrcaSec).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Linkedin: @CloudChronicle
Podcast Twitter - @kaizenteq
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
2021-07-1149 min
Cloud Security PodcastCloud Infrastructure Security at Scale - NetflixIn this episode of the Virtual Coffee with Ashish edition, we spoke with Srinath Kuruvadi (@Srinath Kuruvadi) is the Head of Cloud Infrastructure Security at Netflix (@Netflix).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Linkedin: @Srinath Kuruvadi
Podcast Twitter - @kaizenteq
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c...
2021-07-0449 min
Cloud Security PodcastHacker Valley Studio - ExIST Framework to reach Peak Performance in CyberSecurityIn this episode of the Virtual Coffee with Ashish edition, we spoke with Chris Cochran (@chriscochrcyber) and Ronald Eddings (@ronaldeddings) are the host of a CyberSecurity Podcast called Hacker Valley Studio (@TheHackerValley).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Twitter: @TheHackerValley
Podcast Twitter - @kaizenteq
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: htt...
2021-06-2737 min
Cloud Security PodcastFinding Security Bugs in Google Cloud - Kat TraxlerIn this episode of the Virtual Coffee with Ashish edition, we spoke with Kat Traxler (@nightmarejs) is the Cloud Security Engineering Lead, Best Buy(@BestBuy).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: @hashishrajan
Guest Twitter: @nightmarejs
Podcast Twitter - @kaizenteq
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.youtube.com/c/cloudsecuritypodcast?sub_c...
2021-06-2037 min
Cloud Security PodcastHacker stories from the Internet - Darknet DiariesIn this episode of the Virtual Coffee with Ashish edition, we spoke with Jack Rhysider (@jackrhysider) is the host of Award Winning CyberSecurity Podcast Darknet Diaries (@DarknetDiaries).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/JackRhysider
Podcast Twitter - @kaizenteq
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://ww...
2021-06-1357 min
Cloud Security PodcastCSO Hall of Fame - 21 yrs in Cybersecurity: Challenges THEN & NOWIn this Mid Week special episode of the CISO Perspective edition, we spoke with Andy Ellis (@csoandy) is the Operating Partner at YL Ventures (@YLVentures) and the ex-CISO of Akamai (@Akamai).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/csoandy
Podcast Twitter - @kaizenteq
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- C...
2021-06-1042 min
Cloud Security PodcastFinding and Fixing SECURITY BUGS IN GOOGLE CLOUD - Dylan AyreyIn this episode of the Virtual Coffee with Ashish edition, we spoke with Dylan Ayrey (@insecurenature) is a Professional Hacker and Co-Founder of Truffle Security (@TruffleSecurity-Linkedin)
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/insecurenature
Podcast Twitter - @kaizenteq
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our YouTube Channel:
- Cloud Security Podcast: https://www.yo...
2021-06-061h 01
Cloud Security PodcastAttacking and Defending Managed Kubernetes Clusters - Brad GeesamanIn this episode of the Virtual Coffee with Ashish edition, we spoke with Brad Geesaman (@bradgeesaman) is a Senior Cloud Native and Kubernetes Security Professional and the Co- Founder of Darkbit (@Darkbit).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: @bradgeesaman
Podcast Twitter - @kaizenteq
If you want to watch videos of this episode and past CSP episodes:
- Youtube Channel: https://www.youtube.com/c/cloudsecuritypodcast?su...
2021-05-3059 min
Cloud Security PodcastKubernetes Runtime Threat Detection and Response - Falco, SysdigIn this episode of the Virtual Coffee with Ashish edition, we spoke with Dan “POP“ Papandrea (@danpopnyc) is the CNCF Ambassador, Director of Open Source Community and Ecosystem (@sysdig) and Podcast Host for @PopcastPop
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/danpopnyc
Podcast Twitter - @kaizenteq
If you want to watch videos of this episode and past CSP episodes:
- Youtube Channel: https://www.youtube...
2021-05-2352 min
Cloud Security PodcastStudy Hall - Attacking K8S Cluster Defaults!In this Study Hall - Ashish goes through Kubernetes Components to start understanding the Kubernetes Architecture
READ the Multi-part Medium Article here - Ultimate Guide to Kubernetes Security
For Similar Topics covered in other episode of Cloud Security Podcast visit: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Podcast Twitter - @kaizenteq
To ASK questions from our Guest SUBSCRIBE TO OUR YOUTUBE LINK HERE to JOIN our next LIVE STREAM - : https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
2021-05-2025 min
Cloud Security PodcastStart here for Kubernetes Security - Magno LoganIn this episode of the Virtual Coffee with Ashish edition, we spoke with Magno Logan (@MagnoLogan) is the Security Researcher, Trend Micro(@TrendMicro)
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/magnologan
Podcast Twitter - @kaizenteq
If you want to watch videos of this episode and past CSP episodes:
- Youtube Channel: https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
2021-05-1658 min
Cloud Security PodcastStudy Hall - Kubernetes Concepts and Architecture Explained!In this Study Hall - Ashish goes through Kubernetes Components to start understanding the Kubernetes Architecture
READ the Multi-part Medium Article here - Ultimate Guide to Kubernetes Security
For Similar Topics covered in other episode of Cloud Security Podcast visit: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Podcast Twitter - @kaizenteq
To ASK questions from our Guest SUBSCRIBE TO OUR YOUTUBE LINK HERE to JOIN our next LIVE STREAM - : https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
2021-05-1219 min
Cloud Security PodcastRisk Analysis of Kubernetes Security - Mark Manning, SnowflakeIn this episode of the Virtual Coffee with Ashish edition, we spoke with Mark Manning (@antitree) is the Principal Security Architect at Snowflake(@SnowflakeDB). Before this he used to run Kubernetes Risk Analysis at NCC Group (@NCCSECURITYUS)
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/antitree
Podcast Twitter - @kaizenteq
If you want to watch videos of this and previous episodes:
- Youtube Channel: https://www.youtube.c...
2021-05-0949 min
Cloud Security PodcastStudy Hall - What is Kubernetes & Why do you NEED TO know about it?In this Study Hall - Ashish goes through WHAT IS Kubernetes? What Kubernetes is NOT? & Should you start refactoring or building infrastructure in Kubernetes today?
For Similar Topics covered in other episode of Cloud Security Podcast visit: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/itascode
Podcast Twitter - @kaizenteq
To ASK questions from our Guest SUBSCRIBE TO OUR YOUTUBE LINK HERE to JOIN our next LIVE STREAM - : https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
2021-05-0510 min
Cloud Security PodcastKubernetes (Goat) Vulnerable by Design - Madhu AkulaIn this episode of the Virtual Coffee with Ashish edition, we spoke with Madhu Akula (@madhuakula) is an international Kubernetes Security Public Speaker, Black Hat Trainer, Creator of open source repo Kubernetes Goat, Security Researcher and Security Engineering at Miro (Miro).
Episode ShowNotes, Links and Transcript on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/madhuakula
Podcast Twitter - @kaizenteq
If you want to watch videos of this and previous episodes:
- Youtube Cha...
2021-05-0249 min
Cloud Security PodcastCISO PERSPECTIVE SERIES: LINKEDIN CISO - Geoff BelknapIn this episode of the Virtual Coffee with Ashish edition, we spoke with Geoff Belknap (@geoffbelknap) is the Chief Security Officer of Linkedin (@LinkedIn).
In this episode, Geoff & Ashish spoke about
What was your path into your current role
What does Cloud Security mean for you?
What it’s like to be a CISO?
What do you see as a change in the CyberSecurity industry that has bought through COVID
"Talking to the board is the easy part. Adding value to their thinking is hard." - could you expand on this experience for others who still con...
2021-04-2753 min
Cloud Security PodcastStudy Hall: Honest truth behind learning KubernetesIn this Study Hall - Kelsey Hightower explains is it really complex to learn Kubernetes and whether it's really complex. Nothing but the Honest Trust from Kelsey on this episode.
Full Episode on Cloud Security Podcast: www.cloudsecuritypodcast.tv
Cloud Security Academy: www.cloudsecuritypodcast.tv/cloud-security-academy
Host Twitter: twitter.com/hashishrajan
Guest Twitter: twitter.com/kelseyhightower
Podcast Twitter - @kaizenteq
If you want to watch videos of this and previous episodes:
- Youtube Channel: https://www.youtube.com/c/cloudsecuritypodcast?sub_confirmation=1
2021-04-2705 min
Cloud Security PodcastBuilding Threat Detection for your Cloud EnvironmentIn this episode of the Virtual Coffee with Ashish edition, we spoke with Ashwin Patil (@ashwinpatil) who is a returning guest from Season 1 of the Cloud Security Podcast. Ashwin is a Senior Program Manager at Microsoft (@Microsoft).
Last time Ashwin came to speak about Threat Intelligence in Azure - Click here to checkout the Season 1 Episode here.
In this episode, Ashwin & Ashish spoke about
Threat Detection Pre- Cloud and In Cloud
Who should be doing threat hunting?
TTP - Tactics Tool and Procedures
What is cloud detection research ?
Things to consider in Threat Hunting...
2021-04-1850 min
Cloud Security PodcastCloud Governance using Infrastructure as Code (IaC)In this episode of the Virtual Coffee with Ashish edition, we spoke with Ohad Maishlish is the CEO & Co-Founder of env0.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Ohad Maislish - Linkedin
In this episode, Ohad & Ashish spoke about
Three Stages DataCentre Evolution
Governance in Cloud using IaC
Challenges with IaC in companies of different scale - Startup vs Enterprise?
How to get started in IaC for Governance in Cloud?
Would IaC become a standard for anyone doing cloud deployment?
Challenges for organisations looking to implement IaC
How to get started on the governance pieces of...
2021-04-1140 min
Cloud Security PodcastKubernetes Security Explained for those starting today! - Kelsey HightowerIn this episode of the Virtual Coffee with Ashish edition, we spoke with Kelsey Hightower (@kelseyhightower) is the Staff Advocate at Google Cloud (@GoogleCloud) and co-author of “Kubernetes: Up and Running: Dive Into the Future of Infrastructure.”
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Kelsey Hightower (@kelseyhightower)
In this episode, Kelsey & Ashish spoke about
What is Kubernetes and Why is it so popular ?
Should Senior Leadership within organisations consider Kubernetes?
What are the different stages of Kubernetes complexities for organisation as it grows from Startup to an Enterprise?
Kubernetes Security at Application vs Platform Level
Kubern...
2021-04-0554 min
Cloud Security PodcastGetting Infrastructure as Code (IaC) Security Culture right! - Yoni LeitersdorfIn this episode of the Virtual Coffee with Ashish edition, we spoke with Yoni Leitersdorf (@yonadavl) who is the CEO & Co-Founder of Indeni
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Yoni Leitersdorf (@yonadavl)
In this episode, Yoni & Ashish spoke about
What is digital transformation and why do we need it?
Infrastructure as Code and Infrastructure as Code Security
What drives digital transformation?
Who owns infrastructure as code in organisations?
Do security folks need to know how to code?
How to do configuration hardening well?
How to sell or drive infrastructure as code security to your organisation?
...
2021-03-2843 min
Cloud Security PodcastAzure Security Best Practices for Cloud Architects - John SavillIn this episode of the Virtual Coffee with Ashish edition, we spoke with John Savill (Linkedin_John Savill) is the Principal Cloud Architect, Author and YouTuber.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: John Savill (Linkedin_John Savill)
In this episode, John & Ashish spoke about
How is security different between Cloud Security vs On-Prem Security?
How does one track API/User Activity across Azure implementation?
What are some of the security products in Azure that are good practices for anyone starting today?
So what log must be collected to ensure all API events are collected?
What ar...
2021-03-2157 min
Cloud Security PodcastWHAT IS INFRASTRUCTURE AS CODE SECURITY? - Barak SchosterIn this episode of the Virtual Coffee with Ashish edition, we spoke with Barak Schoster Goihman (@barakschoster) is the Co-Founder and CTO of Bridgecrew (@Bridgecrewio).
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Barak Schoster Goihman @barakschoster
In this episode, Barak & Ashish spoke about
What is Infrastructure as Code Security
Application Security vs Infrastructure as Code Security - are they same?
What is DevSecOps?
Where should one start? Ansible? Terraform? Kubernetes? Saltstack?
Configuration and Policy as Code - What are these?
How to get started on Infrastructure Security?
Open source vs Paid product, what should one consider be...
2021-03-1438 min
Cloud Security PodcastINCIDENT RESPONSE IN AWS CLOUDIn this episode of the Virtual Coffee with Ashish edition, we spoke with Toni de la Fuente (@toniblyx) is the Senior Security Consultant at AWS (@AWSCloud) and author of Prowler - AWS Security Tool.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Toni de la Fuente @toniblyx
In this episode, Toni & Ashish spoke about
What is Cloud Security Assessment?
The story behind the creation of Prowler and what Prowler does?
How is Prowler different to CIS benchmark?
How to set up an effective incident response plan?
How to respond to forensic collection evidence?
And much more…
ShowN...
2021-03-0745 min
Cloud Security PodcastHow to become a CLOUD SECURITY ENGINEER IN 2021?In this episode of the Virtual Coffee with Ashish edition, we spoke with Nicholas McLaren (Linkedin - nmclarencys) is the Cloud Security Engineer, ByteChek(@Bytechek).
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Nicholas McLaren (Linkedin - nmclarencys
In this episode, Nick & Ashish spoke about
What qualifications do you need to become a cloud security engineer? Degrees, certifications etc
How to network effective to secure your 1st cloud security role?
Network in the world of Covid-19.
A day in the life of a Cloud Security Engineer
Soft skills required by Cloud Security Engineers
How to get re...
2021-02-2847 min
Cloud Security PodcastKubernetes Security at Scale in A CI/CD Pipeline - Michael FraserIn this episode of the Virtual Coffee with Ashish edition, we spoke with Michael Fraser (@itascode) is the Chief Architect, Co-Founder at refactr (@RefactrIT).
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Michael Fraser - @itascode
In this episode, Michael & Ashish spoke about
What is DevSecOps?
What is Kubernetes?
Why would you use Kubernetes?
What should a Kubernetes Deployment look like when done right from a security perspective?
The building blocks of making Kubernetes part of your CICD pipeline.
Benchmarks to use to measure maturity of organisations
And much more…
ShowNotes and Episode Transcript on www.clo...
2021-02-2156 min
Cloud Security PodcastContainer Security in AWS at Scale - Ben TomhaveIn this episode of the Virtual Coffee with Ashish edition, we spoke with Ben Tomhave (Linkedin - @btomhave) is the Principal, Falcon’s View Consulting (@FalconsView).
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Ben Tomhave (Linkedin - @btomhave)
In this episode, Ben & Ashish spoke about
What are Containers?
What is Container Security/ Kubernetes Security for people from traditional security background?
What should a Container Deployment look like?
7 Security Challenges for introducing Containers into an organization, where to get started?
Building Blocks for building Container Security at Scale - the right way.
Software Composition Analysis for Containers
Sec...
2021-02-1453 min
Cloud Security PodcastCISO Challenges in 2021 - Zane Lackey Signal Sciences, FastlyIn this episode of the Virtual Coffee with Ashish edition, we spoke with Zane Lackey, CISO & Co-Founder Signal Sciences, which is now owned by Fastly.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Zane Lackey - Linkedin
In this episode, Zane & Ashish spoke about
What was your path to your current CyberSecurity Role?
DevOps movement between East Coast and West Coast in 2010 - Etsy (Biggie) & Netflix (2Pac)
Was the change to 30 production deployments a day, good thing for security?
What was action plan as a CISO to tackle 30 deployments a day?
Has the viewpoint on Security a...
2021-02-1051 min
Cloud Security PodcastCloud Security in $25 Billion dollar Company - Siemens USAIn this episode of the Virtual Coffee with Ashish edition, we spoke with Kurt John, Chief CyberSecurity Officer CISO at Siemens USA
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Kurt John - Linkedin
In this episode, Kurt & Ashish spoke about
Cloud Security in a Large Organisation and the challenges that come with it.
Cloud and Cloud Security in the Operation Technology World
How Product Security and Enterprise Security is approached?
The impact of Covid-19 on cloud transformation.
Impact of Edge Technology and 5G.
How beginners can expose themselves to OT security?
What happens in the world...
2021-02-0754 min
Cloud Security PodcastSecurity Chaos Engineering Experiments for BeginnersIn this episode of the Virtual Coffee with Ashish edition, we spoke with David Lavezzo, Director of Security Chaos Engineering at Capital One
Host: Ashish Rajan - Twitter @hashishrajan
Guest: David Lavezzo - Linkedin
In this episode, David & Ashish spoke about
What is security chaos experiments and how does it compare to chaos engineering?
The Golden Age of Offence?
Tools for Chaos Experiments
How to get started in Security Chaos Experiments?
Is Security Chaos Experiments only for large companies?
Security Chaos Experiments in Production
How to get organisation buy in for Security Chaos Experiments?
What is...
2021-01-3135 min
Cloud Security PodcastRED TEAM IN CLOUD - Brianna Malcolmson, AtlassianIn this episode of the Virtual Coffee with Ashish edition, we spoke with Brianna Malcolmson, Security Engineering Manager, Atlassian
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Brianna Malcolmson - Linkedin @briannajoy
In this episode, Brianna & Ashish spoke about
What is Cloud Security Testing and Assessment ?
What is a Cyber Kill Chain in a cloud context?
How to get started in Cloud Pentesting?
The need for Cloud Certification and recommendations for Beginners?
Is there something people are not talking enough about in a Cloud Security context?
And much more…
ShowNotes and Episode Transcript on www...
2021-01-2447 min
Cloud Security PodcastINFRASTRUCTURE AS CODE SECURITYIn this episode of the Virtual Coffee with Ashish edition, we spoke with Matt Johnson, Developer Advocate Lead, Bridgecrew.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Matt Johnson - Twitter @metahertz
In this episode, Matt & Ashish spoke about
What was Matt’s path into Developer Advocate role?
What does Cloud Security mean to Matt?
What is Infrastructure as Code and Infrastructure Code Security ?
Are developers or security teams doing more infrastructure as a code security?
What is develop first cloud security?
Thoughts on static code and run time analysis?
It is a requirements to know Ya...
2021-01-1750 min
Cloud Security PodcastCloud Security Testing in AWSIn this episode of the Virtual Coffee with Ashish edition, we spoke with Pawel Rzepa, Snr Security Consultant, SecuRing.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Pawel Rzepa - Twitter @rzepsky
In this episode, Pawel & Ashish spoke about
What was Pawel’s path into Cybersecurity?
What does Cloud Security mean to Pawel?
What is Cloud Security Testing and Assessment ?
What is a Cyber Kill Chain in a cloud context?
What is threat hunting in cloud security assessments?
What permissions are required for pentesting in AWS?
How does on-premise pentesting translate into cloud?
Different tools that ca...
2021-01-1052 min
Cloud Security PodcastHOW TO BECOME A CLOUD SECURITY ARCHITECT in 2021 ? - Sriya PothamIn this episode of the Virtual Coffee with Ashish edition, we spoke with Sriya Potham, Principal Cloud Security Architect
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Sriya Potham - Linkedin @sriya
In this episode, Sriya & Ashish spoke about
What was your path into Cybersecurity?
Whats your definition of Cloud Security?
What is the shared responsibility model?
Whats a day in the life of a Cloud Security Architect ?
Are cloud architecture reviews different in different industries?
As a Cloud Security Architect do you need to focus on the GRC side?
Are CCM controls used quite often?
What...
2021-01-0344 min
Cloud Security PodcastSTARTING A SUCCESSFUL CYBERSECURITY PODCAST IN 2021In this Christmas special episode of the Virtual Coffee with Ashish edition, we had a panel of successful CyberSecurity Podcast Hosts that answered questions about starting and running a successful CyberSecurity Podcast.
Panel Participants:
Host: Ashish Rajan - Twitter @hashishrajan, Host of Cloud Security Podcast
Guest 1: Chris Cochran - Linkedin chriscochrancyber ,Podcast co-Host, Hacker Valley Studio
Guest 2: James J Azar - Linkedin James-j-azar, Podcast host, The CyberHub Podcast
In this episode, Ashish & Panelist spoke about
The Journey - A bit about your podcast, how you got started?
Thoughts on finding podcast niche?
How do...
2020-12-201h 03
Cloud Security PodcastRISK MANAGEMENT IN CLOUD SECURITY - MONICA VERMAIn this episode of the Virtual Coffee with Ashish edition, we spoke with Monica Verma, CISO
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Monica Verma - Linkedin @monicaverma
In this episode, Monica & Ashish spoke about
What was your path into Cybersecurity?
What does Cloud Security mean for you?
How do you explain risk management to people?
Can an organisation be risk free?
Are there any obvious risk management considerations and challenges people should consider?
What are some of the building blocks of risk management that people can start with?
Which risk assessment strategy would you suggest...
2020-11-2948 min
Cloud Security PodcastWHAT IS DIGITAL RISK PROTECTION & WHY IS IT IMPORTANT? - Sam Small, ZerofoxIn this episode of the Virtual Coffee with Ashish edition, we spoke with Sam Small, Chief Security Officer, Zerofox
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Sam Small - Linkedin @samsmallphd
In this episode, Sam & Ashish spoke about
What was your path into your current role?
What are Digital Risk and Digital Threats?
How do you identify Digital Risk? what are the broad categories?
How is Digital Risk different at an organisation level?
Is Digital Risk Protection the same as Cyber Threat intelligence?
What risks does Digital Risk Protection (DRP) protect organisations against?
What can organisations...
2020-11-2254 min
Cloud Security PodcastOPEN SOURCE AWS SECURITY - MATTHEW FULLER, co-Founder CloudSploit, AquaIn this episode of the Virtual Coffee with Ashish edition, we spoke with Matthew Fuller, co-Founder CloudSploit, Aqua
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Matthew Fuller - Linkedin @mattdfuller
In this episode, Matthew & Ashish spoke about
What was your path into your current role? What was the inspiration behind CloudSpoilt?
What does Cloud Security mean for you?
What are your thoughts for organisations navigating the dilemma of buy first vs build first?
What is Open Source?
Open Source, what is the community driven model here?
What is a role of a cloud security engineer?
What...
2020-11-1547 min
Cloud Security PodcastWHAT THE HECK IS CI/CD | Continuous Integration | Delivery | Deployment - Melissa BenuaIn this episode of the Virtual Coffee with Ashish edition, we spoke with Melissa Benua, Director of Engineering
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Melissa Benua - Linkedin @mbenua
In this episode, Melissa & Ashish spoke about
What was your path into the Engineering Manager role?
What does Cloud Security mean for you?
For those people listening what are some of the foundational Modern Delivery methods - CI/CD, Trunkline deployments etc
What roles does security can play in such environments?
What does a super mature model of CI/CD look like?
What are some of...
2020-11-0842 min
Cloud Security PodcastHOW TO PREPARE FOR GDPR IN AZURE CLOUD ENVIRONMENT- Naomi BuckwalterIn this episode of the Virtual Coffee with Ashish edition, we spoke with Naomi Buckwalter
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Naomi Buckwalter - Linkedin @naomi-buckwalter
In this episode, Naomi & Ashish spoke about
What was your path into CyberSecurity?
What does Cloud Security mean for you?
What is GDPR? Privacy vs Security?
How do we define processing data for purposes of GDPR?
At what point GDPR become a legal thing vs a security thing?
Does an AU company with data is in the EU need to comply with GDPR?
Is GDPR in Cloud different?
What...
2020-11-0146 min
Cloud Security PodcastHOW TO START in BUG BOUNTY IN 2020 with Casey Ellis, BugCrowdIn this episode of the Virtual Coffee with Ashish edition, we spoke with Casey Ellis
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Casey Ellis - Linkedin @caseyjohnellis
In this episode, Casey & Ashish spoke about
What was your path into CyberSecurity
.What does Cloud Security mean for you?
CrowdSource security as a service model & Bug Bounty, can you tell the audience about this space?
How do you make people feel comfortable with the concept of crowdsource security?
Is bug bounty only for big companies?
How do you make sure you are not painting a big bulls eye...
2020-10-251h 05
Cloud Security PodcastCONTINUOUS MONITORING FOR CONTROLS & VULNERABILITIES - DANIEL MIESSLERIn this episode of the Virtual Coffee with Ashish edition, we spoke with Daniel Miessler
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Daniel Miessler - Linkedin @danielmiessler
In this episode, Daniel & Ashish spoke about
What was your path into CyberSecurity
Continuous Monitoring(CM) or Continuous Auditing - is that the same thing for you?
CI/CD, one would assume CM is obvious, or is CM more of a mature organisation thing?
At what point, should an organisation consider Continuous Monitoring? Do smaller organisations need to think about it as well?
What is BugBounty?
How do we...
2020-10-1848 min
Cloud Security PodcastAWS SECURITY IN A LARGE REGULATED ENTERPRISE! - HOUSTON HOPKINS, CAPITAL ONEIn this episode of the Virtual Coffee with Ashish edition, we spoke with Houston Hopkins, Director CyberSecurity, Capital One
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Houston Hopkins - Linkedin @houstonhopkins
In this episode, Houston & Ashish spoke about
What was your path into CyberSecurity?
How Capital one pioneered as bank moving into AWS Cloud?
What immediate security challenges does Cloud Security in a Hybrid world look like, without going into tools.
Do you prefer to use AWS native tools for security observability or a vendor product?
What are some of the Security challenges to solve when...
2020-10-111h 01
Cloud Security PodcastCISO Challenges in Cloud Security - Caleb Sima, VP - Security at DatabricksIn this episode of the Virtual Coffee with Ashish edition, we spoke with Caleb Sima, VP - Security, Databricks
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Caleb Sima - Linkedin @CalebSima
In this episode, Caleb & Ashish spoke about
What was your path into CyberSecurity?
Bulletin Board vs IRC
What is Cloud Security?
Are security challenges harder or difficult between Enterprise vs Cloud built companies?
What are the challenges for migrating from on-premise to cloud?
What are your thoughts on IAM, Roles & VPCs?
How many different tools did you need for visibility of vulnerabilities when moving...
2020-10-041h 06
Cloud Security PodcastWHAT IS SECURITY CHAOS ENGINEERING? - JEROME WALTER, SECURITY MODERNISATIONIn this episode of the Virtual Coffee with Ashish edition, we spoke with Jerome Walter, Security Modernisation, Director, VMWare
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Jerome Walter - Linkedin @JWalter
In this episode, Jerome & Ashish spoke about
What is with the title - Security Modernisation?
What is Security Chaos Engineering?
What is Chaos Engineering Experiments?
Example of a Chaos Engineering Experiment
Are the experiments running continuously or point in time?
How do we balance between putting security controls vs developer convenience?
Is there an element of Pentesting in Security Chaos Engineering?
Does the Chaos Experiments...
2020-09-271h 02
Cloud Security PodcastSecurity and Compliance in AWS CloudIn this episode of the Virtual Coffee with Ashish edition for Cloud Security Podcast, we spoke with Alexander J Yawn - ISC2 Miami Board Member | NABCRMP Founding Board Member
Host: Ashish Rajan - Twitter @hashishraja
Guest: Alexander J Yawn - Linkedin @AJYawn
In this episode, AJ & Ashish spoke about
What was your path into CyberSecurity?
What does Compliance in Cloud mean for you?
What is Shared Responsibility?
How is Compliance different in a Hybrid world?
For anyone who used to audit on-premise, is it difficult to audit cloud environments?
There are so many AWS services...
2020-09-201h 01
Cloud Security PodcastIdentity & Cross Account Access Management in AWS | CLOUD SECURITY - Alexandre SieiraIn this episode of the Virtual Coffee with Ashish edition, we spoke with Alexandre Sieira - Founder @ Tenchi Security
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Alexandre Sieira - Twitter @AlexandreSieira
In this episode, Alex & Ashish spoke about
What was your path into CyberSecurity?
What does Cloud Security mean for you?
How is Security different in a cloud world?
What are the kind of Identities in AWS?
What are the challenges with IT?
Identity in AWS vs Identity in Azure?
Best practices for Privilege and non-Privilege users in AWS?
AWS SSO
How important are Domain Accounts...
2020-09-131h 17
Cloud Security PodcastWHAT IS AZURE IDENTITY MANAGEMENT | CLOUD SECURITYIn this episode of the Virtual Coffee with Ashish edition, we spoke with David O’Brien, MVP Azure , Argos Founder
Host: Ashish Rajan - Twitter @hashishrajan
Guest: David O'Brien - Twitter @david_obrien
In this episode, David & Ashish spoke about
What does Cloud Security in Azure mean for you?
What is Identity & Access Management?
What is IAM from Hybrid vs in Cloud?
How does this compare to identity in AWS IAM/Organisations?
What kind of Human Users exist in Azure?
What kind of Robot Users exist in Azure?
How does Identity differ for Third Party in...
2020-09-0649 min
Cloud Security PodcastCLOUD SECURITY POSTURE MANAGEMENT - CSPM - GAURAV KUMARIn this episode of the Virtual Coffee with Ashish edition, we spoke with Gaurav Kumar, co-founder of RedLock (now part of Palo Alto Prisma Cloud).
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Gaurav Kumar - Linkedin
In this episode, Gaurav & Ashish spoke about
What was your path into CyberSecurity
What does Cloud Security mean for you?
If I am starting in Cloud today, do I need a CSPM?
Do I need a CSPM if I am in multi-cloud with a small foot print?
Story behind Gartner not recognising CSPM as a legit space?
What are...
2020-08-3055 min
Cloud Security PodcastHOW TO BUILD SECURE ENVIRONMENTS IN Google Cloud - DARPAN SHAHIn this episode of the Virtual Coffee with Ashish edition, we spoke with Darpan Shah, Cloud Security Engineer. Darpan has 8 AWS Certificates, 6 GCP certificates and at his work, he works on both Google Cloud and AWS.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Darpan Shah - Website
In this episode, Darpan & Ashish spoke about
What was your path into CyberSecurity or your current role?
What does Cloud Security mean for you?
Where does a Startup starting in Google Cloud start for Security Foundation?
What is Project?
What is an Organisation?
How does Identity and Access...
2020-08-2357 min
Cloud Security PodcastHOW TO BUILD SECURE ENVIRONMENTS IN MICROSOFT AZURE - NICHOLAS HUGHESIn this episode of the Virtual Coffee with Ashish edition, we spoke with Nicholas Hughes, CEO of EITR Technologies.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Nicholas Hughes - Linkedin
In this episode, Nicholas & Ashish spoke about
Your path into CyberSecurity
What does Cloud Security mean for you?
Where does one start when it comes to starting today in Azure?
What’s the highest level of segregation that one can have in Azure?
What does an Azure AD Tenant & Azure Subscription look like?
What is a Resource Group in Azure and how is it different to...
2020-08-1653 min
Cloud Security PodcastHOW TO CREATE AN EFFECTIVE CYBER SECURITY TEAM - CLINT GIBLERIn this episode of the Virtual Coffee with Ashish edition, we spoke with Clint Gibler
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Clint Gibler - Linkedin
In this episode, Clint & Ashish spoke about
Your path into CyberSecurity
What does Cloud Security mean for you?
What does application security mean for you?
What makes a good metrics for an effective security team?
Principles, mindsets, and methodologies of highly effective security teams
What is SAST, DAST
Any open source tools that can be integrated into CI/CD pipeline?
Is there pentesting knowledge required to move to use DAST...
2020-08-0949 min
Cloud Security PodcastApplication Security AppSec 101 - Tanya JancaIn this episode of the Virtual Coffee with Ashish edition, we spoke with Tanya Janca, Founder, SheHacksPurple & WeHackPurple.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Tanya Janca - Linkedin
Tanya & Ashish spoke about
Who is Tanya Janca? :)
What was your path into CyberSecurity or your current role?
What has professional life been after leaving Microsoft?
What does Cloud Security mean for you?
What is Application Security or AppSec?
Tanya Janca’s Book - “Alice and Bob learn Application Security”
How can someone start in Application Security, specially if they are trying to move laterally?
What is Stati...
2020-08-021h 06
Cloud Security PodcastGetting Started with Chaos Engineering - What is it and how can it be used to build Application resiliency? - Aaron Rinehart, VericaIn this episode of the Virtual Coffee with Ashish edition, we spoke with Aaron Rinehart, CTO Co-Founder Verica.
This is episode not to miss.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Aaron Rinehart - Linkedin
Aaron & Ashish spoke about
Who is A-aran? :)
What was your path into CyberSecurity or your current role?
What is Chaos Engineering?
Is Fuzzing part of Chaos Engineering?
Is Chaos Engineering for SREs?
Is there an example of application fault injection from a cloud perspective?
What concepts of Chaos Engineering are people not talking about?
Does Chaos Engineering need...
2020-08-021h 00
Cloud Security PodcastCloud Security in Operational Technology vs Information Technology world - Parul Kharub, CISSPIn this episode of the Virtual Coffee with Ashish edition, we spoke with Parul Kharub, CISSP, HMM. Parul has spent number of years in the Operational Technology (OT) space building cybersecurity strategy and if you in the OT space or want to do cybersecurity in this space.
This is episode not to miss.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Parul Kharub - Linkedin
Parul & Ashish spoke about
What was your path into CyberSecurity or your current role?
What does Cloud Security mean for you?
Do you work in any particular cloud provider or...
2020-07-1954 min
Cloud Security PodcastHOW TO BECOME A SUCCESSFUL CISO IN 2020 - Abbas Kudrati, MicrosoftIn this episode of the Virtual Coffee with Ashish edition, we spoke with Abbas Kudrati, CyberSecurity Advisor for Microsoft Asia Pacific Region. Abbas has previously worked in various large companies as a CISO and continues to share and support Microsoft Azure customers understand security in a world of cloud. This is episode not to miss.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Abbas Kudrati - Linkedin
Abbas & Ashish spoke about
What was your path into CyberSecurity or your current role?
Information Security Vs Cyber Security, what’s the difference?
What does Cloud Security mean for you?
Wha...
2020-07-121h 03
Cloud Security PodcastHow to do Google Cloud Security Well - The 2020 Edition - Darpan ShahIn this episode of the Virtual Coffee with Ashish edition, we spoke with Darpan Shah, Cloud Security Engineer. Darpan has 8 AWS Certificates, 6 GCP certificates and at his work, he works on both Google Cloud and AWS. This is episode not to miss.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Darpan Shah - Website
Darpan & Ashish spoke about
What was your path into CyberSecurity or your current role?
What does Cloud Security mean for you?
What public cloud provider do you focus on?
What makes you like Google Cloud over AWS? Vice versa?
Where does Kubernetes/Containers f...
2020-07-0555 min
Cloud Security PodcastHOW TO BECOME A CLOUD SECURITY ENGINEER in 2020 | Including Top CertificationsIn this episode of the Virtual Coffee with Ashish edition, we spoke with Christopher Hughes, CISSP, Cloud Security Engineer.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Chris Hughes - Linkedin
Chris & Ashish spoke about
What was Chris’s path into CyberSecurity & Cloud Security?
What is a Cloud Security Engineer?
What does Cloud Security mean in AWS or Azure or GCP context?
For any Students/SysAdmins/developers listening, who want to get into the field (certification etc)
Have doing the certifications been helpful?.
Any recommendations for those who want to pass the AWS Security Speciality Ex...
2020-06-2845 min
Cloud Security PodcastBuilding an Engineering Security Culture - Failure stories included - Edwin Kwan, Tyro PaymentsIn this episode of the Virtual Coffee with Ashish edition, we spoke with Edwin Kwan, Head of Application and Software Security at Tyro payments.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Edwin Kwan - Twitter @edkwan
Edwin & Ashish spoke about
What was Edwin’s path into CyberSecurity?
What is AppSec for people who don't know?
What is the difference between Application Security and Software Security?
Is being a developer an advantage going into Application Security?
Is AppSec any different between cloud compared so an application deployed on-premise?
Enabling an engineering security culture - What does th...
2020-06-2144 min
Cloud Security PodcastTIPS FOR WOMEN IN INFORMATION SECURITY TO GET A JOB IN CYBER SECURITY - Alannah Goh, 0xCCIn this episode of the Virtual Coffee with Ashish edition, we spoke with Alannah Guo, Founder of 0xCC & Pentester.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Alannah Guo - Twitter @AlannahGuo
Alannah & Ashish spoke about
What was your path into CyberSecurity?
What's the best way to get into pentesting?
Do you have to be a fan of gaming/star wars/mr robot to be connect with fellow cybersecurity people?
Is it important to technical as a women to be respected by male colleagues in cybersecurity
What are the advantages of working as a pentester, if a...
2020-06-1458 min
Cloud Security PodcastGoogle Cloud Security - How does Google Cloud work?In this episode sponsored by Virtual Coffee with Ashish edition, we spoke with Francesco Cipollone, Chapter Chair (UK), Cloud Security Alliance
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Francesco Cipollone - Twitter @Frances07789950
Francesco & Ashish spoke about
Why would someone choose Google Cloud over AWS or Azure?
What does Security in Google Cloud look like for those using other cloud?
Is making Terraform a universal script for multi-cloud environment, great idea?
Is multi-cloud a good idea?
How mature is Security in Google compared to AWS/Azure?
For any Security Architect listening to this episode, what should...
2020-06-0754 min
Cloud Security PodcastWhat is GOOD COMPANY CULTURE (WITH EXAMPLE ) during COVID19 with remote employees!In this episode sponsored by Virtual Coffee with Ashish edition, we spoke with Graeme Cantu-Park, CISO of Matilion
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Graeme Cantu-Park - Linkedin
What is culture - why is it important and how does it intersect with security?
How is culture done right for remote employees, thanks COVID!
Why is culture in Growth organisations so important?
Can you tell me some examples from experience of what worked well there?
Security often isn't included in a growth organisation until a later stage (look at zoom). How do you apply security without disrupting culture?
A...
2020-05-3137 min
Cloud Security PodcastWhat is a Connected Car | How to secure api in connected cars? - Virtual Coffee with Ashish - Alissa KnightIn this episode of the Virtual Coffee with Ashish edition, we spoke with Alissa Knight, Car Hacker, Author, Cybersecurity Influencer and Entrepreneur
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Alissa Knight - Twitter @alissaknight
What is a Connected Car?
What is API?
How do I secure APIs?
How can someone secure API for Connected Cars?
What should you do to monitor API?
Can I buy a Tesla?
Apple has API to record body contact, which cannot be turned OFF
COVID Safe apps and the future of how freely information is collected by internet aware smart devices?
Who do...
2020-05-241h 03
Cloud Security PodcastWhat is SRE? When should i have SRE? - Virtual Coffee with Ashish - Tim HeckmanIn this episode of the Virtual Coffee with Ashish edition, we spoke with Tim Heckman, Sr. SRE Netflix.
Host: Ashish Rajan - Twitter @hashishrajan
Guest: Tim Heckman
What is SRE?
Is it helpful to have SRE team when you already have a Security team?
What does Security in Netflix look like?
How can people scale maturity in security when dealing with cloud and multi-cloud?
ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @theckman
2020-05-1740 min
Cloud Security PodcastNIST CyberSecurity Metrics for the Board - Taylor HersomIn this episode of the Virtual Coffee with Ashish edition, we spoke with @Taylor Hersom about
Why do CyberSecurity Professionals need to think about talking Cyber Security to the board?
What kind of cybersecurity metrics works best for Board?
Is Fear, Uncertainty, Doubt (FUD) the right way to approach presenting cybersecurity to the board?
FAIR methodology to put $ value against each RISK - Risk and Governance is a great space to start for those who want to start in cybersecurity but are not too technical?
Does being knowledgable in datacenter governance beneficial in world of Cloud?
Can companies g...
2020-05-1057 min
Cloud Security PodcastVirtual Coffee with Ashish - Cloud Security Podcast & Hacker Valley StudioIn this episode, we sit with Chris Cochran & Ronald Eddings from Hacker Valley Studio.
Chris Cochran & Ronald Eddings from Hacker Valley Studio & Ashish spoke about
How did you get into CyberSecurity?
What is Cloud Security?
Is multi-cloud a thing?
What is a good maturity in the Cloud Security space?
How does Security change in a world of COVID19?
What are people not talking enough about cloud security ?
Mentorship and CyberSecurity Podcast
More info and show notes transcript on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @theHackerValley @chriscochrcyber @ronaldeddings
2020-05-031h 00
Cloud Security PodcastScaling a DevSecOps model | SERVERLESS SECURITY BEST PRACTICES with Abhay Bhargav , CTO , we45In this episode, we sit with Abhay Bhargav, CTO, we45.
Abhay & Ashish spoke about
What is Cloud Security?
Is multi-cloud a thing?
What is DevSecOps?
What is a good maturity in the DevSecOps space?
What’s a free tool to get started today for developers?
What about starting with Threat Modelling as a beginner?
Doing Application Security (AppSec) at scale, what does that look like?
How does Security change in a world of serverless?
Can there be too many functions?
Lack of servers in serverless, mean that St...
2020-04-2641 minCloud Security PodcastCORONAVIRUS & CYBERSECURITY | ISOLATION LIFEIn this episode, we are covering a trending topic CORONAVIRUS OR COVID19 and how it is affecting businesses around me and my friends & colleagues. I also talk about my personal challenge with starting a new job in this COVID world with a remote team.
I hope you are reaching out to your friends and family to check on them and staying indoors to keep the community safe too.
You can reach me on ashish@kaizenteq.com
Ashish's Website: www.ashishrajan.com
Previous episodes videos are available on www.cloudsecuritypodcast.tv
2020-04-1910 min
Cloud Security PodcastHow to secure and improve cloud environment - Merritt Baer, Principal Security Architect, AWSIn this episode, we sit with Merritt Baer, Principal Security Architect, AWS.
Merritt & Ashish spoke about
What is Cloud Security?
What does security look like in a mature organisation?
How can security integrate into the business? How does AWS do it?
What is the AWS Rapid Prototyping team?
What are the signs of an organisation with mature security?
Importance of being technical as a women in cybersecurity?
What is Tech and Roses Group?
More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan...
2020-04-1152 min
Cloud Security PodcastCloud Center of Excellence in AWS | How Atlassian manages Risk and Compliance - Atlassian 2020In this episode, we sit with Michael Fuller, Cloud Centre of Excellence, Atlassian.
Michael & Ashish spoke about
Importance of being standardisation of security across the cloud footprint?
Challenges of having standardised security when a M&A bring companies which are lot more mature in cloud?
What were the challenges of implementing this in a global company like Atlassian?
How do you classify maturity in cloud? What does the maturity scale look for you?
How do global teams at Atlassian do effective decision making while working remotely?
More info and show...
2020-04-0537 min
Cloud Security PodcastA TECHNICAL WOMEN DELIVERING NON-TECHNICAL TRAINING IN CYBERSECURITY | HOW TO BUILD CYBERSECURITY TRAINING PROGRAM- Fareedah Shaheed, Online Safety and Security Strategist, SekuvaIn this episode, we sit with Fareedah Shaheed, Online Safety and Security Strategist @Sekuva.
Fareedah & Ashish spoke about
Importance of being technical for women in cybersecurity?
Challenges of training cybersecurity to a non-technical audience?
How to work safely from home during COVID Season?
Example of SCAMs for elderly during this time?
How to start building a cybersecurity online course?
More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @cyberfareedah
2020-03-2931 min
Cloud Security PodcastHow HASHICORP works with 90 percent Staff works Remotely | Incident Response | AWS Cloud Native! - Will BengtsonIn this episode, we sit with Will Bengtson, Director for Threat Detection and Response, Hashicorp.
Will & Ashish spoke about
What is Cloud Native & Cloud Security?
How do you start with Threat Detection and Incident Response in AWS?
Measuring Maturity for response to threats in Cloud?
How can people work from home, Hashicorp has been 90% remote since the beginning
More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @WillBengtson(__muscles)
2020-03-2257 min
Cloud Security PodcastMulti Cloud Strategy | Multi Cloud Management for companies of all size - David Linthicum , Chief Cloud Strategy Officer for DelloiteIn this episode, we sit with David Linthicum, Chief Cloud Strategy Officer for Delloite.
David & Ashish spoke about
What is Cloud Security?
How is security of data different/same in cloud from on-premise?
How is Cloud Security Maturity between startups and enterprise different?
Is multi-cloud good?
Is there Shadow IT/Shadow Cloud present?
Lack of Planning and architecture for cloud
Lack of awareness of how to effectively do cloud security?
More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @DavidLinthicum
2020-03-1544 min
Cloud Security PodcastCCPA COMPLIANCE | CALIFORNIA CONSUMER PRIVACY ACT | DATA GOVERNANCE BEST PRACTICES - TAYLOR HERSOM, VCISO, AUSTIN,TEXASIn this episode, we sit with Taylor Hersom, vCISO, Austin,Texas.
Taylor & Ashish spoke about
Data privacy and Cloud Security
California Consumer Privacy Act and how it affects all organisations around the world
Where can SMC companies can start with Data privacy/Data Governance/Data Security?
Is a Startup too small to be breached?
More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @taylorhersom
2020-03-0835 min
Cloud Security PodcastDocker Security Best practice | Container Security 101 in AWS - Michael Hausenblas, Product Developer Advocate, AWSMichael Hausenblas is a Product Developer Advocate, Amazon Web Services (AWS) Container Service team.
Michael & Ashish spoke about
Basics of Container Security Keeping Containers stateless vs building data stores in container cluster
Container Security for someone starting on Container security today
Misconceptions around Container Security?
What a mature container security looks like?
Incident Response in Container cluster environments?
More details in the podcast. More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan Michael Hausenblaus - Twitter @mhausenblas
2020-03-0142 min
Cloud Security PodcastThreat Intelligence platform for cyber security in Azure | Incident Response in Azure - Ashwin Patil, Threat Intelligence Center, MicrosoftAshwin Patel is a Senior Program Manager, Threat Intelligence Microsoft.
Ashwin & Ashish in this episode spoke about
Capital One Data breach and how Azure Sentinel could have helped
Setting up Security Operation for Cloud environments
Incidence Response and Forensics in Microsoft Azure
Building Threat Intelligence for cybersecurity in cloud
Threat Detection in Cloud vs On-premise
How can a threat pivot between multi-cloud environments is essential for monitoring security events and incidents.
More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @ashwinpatil
2020-03-0135 min
Cloud Security PodcastMICROSOFT IGNITE 2020 SYDNEY | Getting started with securing Microsoft Azure Workload- David O'Brien, Microsoft MVP for AzureDavid & Ashish spoke about
What is Microsoft Ignite vs Microsoft Ignite Tour and why should cloud security people care about the event?
Microsoft Ignite 2020 Sydney and Johannesburg
What were the common questions asked in the Microsoft Hub, expert hub for Azure?
Azure Bastion - No need for tunneling for bastion
Is public cloud secure?
How does one measure maturity of Azure DevOps?
More info and show notes on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @david_obrien
2020-02-1646 min
Cloud Security PodcastIs public cloud secure? - Francesco Cipollone, Cloud Security AllianceIn this episode we speak to Francesco Cipollone, Head of Cloud Security Alliance for UK
Francesco and Ashish speak about is public cloud secure and if multi-cloud is a good thing, especially if you are starting out.
ShowNotes for the episode can be found on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @Frances07789950
2020-02-0934 min
Cloud Security PodcastJust Eat UK security - cloud security across Scotland uk canada in a world of multi public cloudIn this episode we speak to Stu Hirst, Principal Cloud Security @Just Eat.
Stu and Ashish speak about keeping up security in a world of multi cloud, the challenges of recruiting for cloud security, what should people who are starting today in cloud security focus on .
ShowNotes for the episode can be found on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @stuhirstinfosec
2020-02-021h 04Cloud Security PodcastCloud Security in Japan - Cloud Security Podcast the Tokyo editionThis episode is a non-sponsored episode which is recording from Ashish's recent visit to Tokyo, Japan. During the trip Ashish caught up with mixed group of cybersecurity professionals who have been working in the public cloud space for some time in Tokyo with some of big companies in Tokyo.
ShowNotes for the episode can be found on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan
2020-01-2606 minCloud Security PodcastAZURE vs AWS , Azure Security and Can AZURE be DevOps friendly? - Tanya JancaIn this episode, we sit with Tanya Janca, previously Senior Cloud Advocate at Microsoft.
Tanya & I spoke about the right way to do move workloads to Azure with DevOps. We compared notes on AWS and Azure and Google Cloud. Tanya also busted some myths when it comes to migrating any workload in any cloud.
ShowNotes for the episode can be found on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @shehackspurple
2020-01-191h 02Cloud Security PodcastCLOUD SECURITY JOURNEY OF DOW JONES POST THE AWS CLOUD BREACH , WITH JAY KELATH, PRODUCT SECURITYIn this episode, we sit with Jay Kelath, Director for Product Security at Dow Jones.
Jay & I spoke about the Dow Jones breach and how things changed from top down in Dow Jones for the better. We spoke about security lost trust of engineering by trusting security vendors and then How security won the trust of engineering back. The teams together were able to build lot of devops friendly security tools which was open sourced for others to reap benefits from it too.
ShowNotes for the episode can be found on www.cloudsecuritypodcast.tv
2020-01-1248 minCloud Security PodcastNetworking , recruiting and retaining female engineers, cyber security influencer, personal branding, mentoring for introvert men and women in cyber Security with Jane FranklandIn this episode, we sit with Jane Frankland, an award-winning entrepreneur, best-selling author and international speaker. Jane is a CISO advisor and has a diverse background, from being nominated as a Young British Designer after graduating to building my own global hacking firm and becoming a board advisor, awards judge, awards winner, LinkedInTop Voices and a top 20 cybersecurity global influencer. Jane has been a champion in enabling organisation to attract female talent in cybersecurity roles. Jane also is a huge advocate of mentoring women to get into a cyber security role.
ShowNotes for the episode can be f...
2020-01-0556 minCloud Security PodcastCloud Security and Infosec girls with Vandana VermaIn this Blue team episode, we sit with Vandana Verma, a Board member of OWASP and was recently awarded “Top influencers in Security and Fire” and “Cybersecurity Women of the year award by Women Cyberjutsu Society in the Category “Secure Coder”. We talk about Cloud Security in public cloud, the myths in cloud security incidents and mistakes she sees people do.
ShowNotes for the episode can be found on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @InfosecVandana
2019-12-2335 minCloud Security PodcastAWS Re-invent 2019 Security Announcements - The DevSecOps in AWS editionIn this DevSecOps in AWS episode, we sit with Arjen Schwarz the host of Ambassador Lounge Podcast and review the security releases from AWS Re:invent 2019 and what it means for DevOps teams and security teams who are currently working together or planning to work together.
ShowNotes for the episode can be found on www.cloudsecuritypodcast.tv
Twitter - @kaizenteq @hashishrajan @ArjenSchwarz
2019-12-2239 min
Cloud Security PodcastCloud Security Podcast - TrailerHey what’s up everyone! This is Ashish! I am a sysadmin turned cloud security guy with strange opinion on cyber security in the new world of cloud, containers, serverless and whatever comes next. I am also your host of Cloud Security podcast, a podcast where every episode I sit down and talk with cloud security practitioners on the challenges they face in public cloud and get into as much detail as possible on how they tackled.
The podcast is for security enthusiast and practitioners who are interested in how security can work in public cloud and how...
2019-11-2801 min