Cloud Security Podcast

In this episode, host Ashish Rajan spoke about the changing landscape of vulnerability management with Amit Sheps from Ionix. Together, they explore the concept of Continuous Threat Exposure Management (CTEM) introduced by Gartner and why it's reshaping traditional vulnerability management practices. They discuss the shift from patch management to exposure management and the role of AI and automation in solving the growing number of vulnerabilities

What is CTEM, and why is it changing the way we approach vulnerability management? 🤔 We spoke to Amit Sheps, Director of Product Marketing at IONIX about the evolution of vulnerability management. From patch management to exposure management, we discuss Gartner’s new framework, Continuous Threat Exposure Management (CTEM), and how AI and automation are reshaping the landscape. The conversation will be dropping today so be sure to tune in ! #cloudsecurity #vulnerabilitymanagement #exposuremanagement

Happy Thanksgiving to all of you - For all the support, love and encouragement through the years. For fuelling us for all that we do!

🚀 Which Framework Should You Choose? 🛡️ Ashish Rajan 🤴🏾🧔🏾♂️ spoke to Lukasz Gogolkiewicz, experienced cybersecurity leader about a question many CISOs and security leaders face when building or rebooting their cybersecurity programs: Where do you even start? There’s no perfect answer, but there are strategies that work, depending on your organization’s maturity and expertise. - Level 0? Start simple. Frameworks like Essential 8 provide an excellent foundation to build upon. - CIS vs. NIST? It’s not about which one is "better." Pick the one your team can best understand and implement. CIS often has more open-source tools to help you track progress — and hey, who doesn’t love a good graph for those executive reports? 📊 - Know your threats. A threat-driven approach helps you focus. Are you an e-commerce target? Strengthen your web app security: ✅ Dependency management ✅ Pentesting ✅ EDR on platforms ✅ WAFs for protection This was a great conversation with Lukasz about the relevance of cybersecurity framework for leaders and where can leaders start. We have linked the full episode in the comment below #cloudsecurity #ciso #cybersecurityleadership

What is the role of Platform Engineering in today’s Cloud Driven Enterprises? Recorded live at HashiConf 2024, Ashish Rajan 🤴🏾🧔🏾♂️ spoke to Cole Morrison, Senior Developer Advocate at HashiCorp about the rise of platform teams and their impact on developer productivity, how Terraform acts as a bridge between infrastructure and security policies and practical use cases for automation in scaling enterprise cloud environments. #cloudsecurity #hashicorp #infrastructureascode

🚀 Data Perimeters: The Unsung Hero of Cloud Security? Cloud security is evolving, and so are the challenges of keeping data safe while enabling agility. Enter the data perimeter—a concept that's been around but now comes with a modern twist. We spoke to Tyler Warren, Lead Cloud Security Engineer at USAA about all things Data Perimeter! 🛡️ What is a data perimeter? Trusted identities, networks, and resources explained in simple terms. Why it’s not just a buzzword but a foundational security layer. ⚙️ How to Balance Security and Agility Guardrails that protect data while empowering your business to grow. Practical ways to implement controls without slowing things down. 🌐 Cloud vs. On-Prem: What’s Really Changed? Familiar tools like firewalls and network segmentation meet the cloud. The game-changing role of identity and authorization in cloud environments. It’s not just about keeping data secure—it’s about ensuring your organization can innovate and thrive. If you are interested in Data Security and Data Perimeter in the Cloud then this episode is certainly for you! #datasecurity #dataperimeter #cloudsecurity

What’s the role of Platform Engineering in today’s cloud-driven enterprises? 🤔 This week on the podcast, Ashish Rajan 🤴🏾🧔🏾♂️ sat down with Cole Morrison, Senior Developer Advocate at HashiCorp to talk about: ✨ The rise of platform teams and their impact on developer productivity ✨ How Terraform bridges the gap between infrastructure and security policies ✨ Real-world examples of automation transforming enterprise cloud environments 🎙Tune in on all your favourite audio and video platforms #InfrastructureAsCode #HashiConf2024 #cloudsecurity

In this episode Ashish Rajan sits down with James Clough, CTO and Co-founder of Robin AI, to discuss how generative AI is reshaping the legal tech landscape. James shares his journey from theoretical physics to pioneering legal AI, revealing the challenges and opportunities of building tools that streamline contract lifecycle management with cutting-edge technology. James spoke to us about how SageMaker and AWS Bedrock enable Robin AI to enhance security and functionality while addressing critical concerns such as data privacy and regulatory compliance. James also dives into the distinction between predictive and generative models, explaining their use cases and risks in the legal space. #cloudsecurity #awssecurity #genai

"I'll need to run some diagnostic tests after dessert. Pass the pie, please." - Holiday Season Survival Kit for Tech Folks! Happy Holidays for those taking on tech-support roles through Thanksgiving or Friendsgiving! #thanksgiving #techcareer

This week's Cloud Security Newsletter covers - Cloud Security Announcements That Matter 🤓 from Microsoft Ignite 2024, AWS pre:Invent 2024 #microsoftignite #aws