12
The Changing Landscape of Information Security 1 Applications DevSecOps Hybrid IT Automation Viren Mantri All views expressed here are entirely mine, do not represent those of my current and past employers.

The Changing Landscape of Information Security

Embed Size (px)

Citation preview

Page 1: The Changing Landscape of Information Security

The Changing Landscape of Information Security

1

ApplicationsDevSecOps

Hybrid ITAutomation

Viren MantriAll views expressed here are entirely mine, do not represent those of my current and past employers.

Page 2: The Changing Landscape of Information Security

2

Backdrop

• Criminals Profit

• Espionage Intelligence

• Warriors Disruption

• Terrorists Ideology

• The question is not whether but when?

Cyber attacks

Page 3: The Changing Landscape of Information Security

Current era

Page 4: The Changing Landscape of Information Security

4

Rigidity à Agility

Page 5: The Changing Landscape of Information Security

5

DevSecOps – on a lighter note

No offence meant J

Page 6: The Changing Landscape of Information Security

6

DevSecOps – on a serious noteo Baking security in design

o From BRD/FSD to weekly huddles and feature releases

o Externalizing authentication and authorization

o Using encryption and tokenization for data protection

o Building resilience to vulnerabilities and exploits

o Educating developers on security

Page 7: The Changing Landscape of Information Security

7

DevOps ToolSet

• Developer scan

• Build scan

• Infrastructure

• Automation

• Vulnerability reporting

• Remediation workflow

• Risk assessment

• Security dashboard

SCM Build Deploy Cloud OS Security

Repo Package Release IaaS VM Scanning

CI Provision Test PaaS App/Web VA

Workflow Config Monitoring SaaS DB PenTest

Page 8: The Changing Landscape of Information Security

8

Traceability is key

Page 9: The Changing Landscape of Information Security

9

Hybrid IT • Growing acceptance

• Initial euphoria over (in)security mellowed

• Cloud providers challenging On-Prem

• Need to support legacy while striving to be agile

• Agility flexes rigidity, breaks down silos

Page 10: The Changing Landscape of Information Security

10

Automation• The right level eliminates inefficiencies

• Delivers economies of scale

• Ensures repeatable processes

Page 11: The Changing Landscape of Information Security

11

Matured teams• Recognize Information security is everyone’s business

• Develop a blueprint providing clarity and rationale

• Know why we are doing what we are doing

Page 12: The Changing Landscape of Information Security

12

Questions

[email protected]


The Changing IT Threat Landscape: Three Steps to A Proactive Security Strategy

The Changing IT Threat Landscape: Three Steps to A Proactive Security Strategy

Technology
The Changing Energy Landscape Economic Competitiveness Energy Security Environment / Climate Change New Opportunities

The Changing Energy Landscape Economic Competitiveness Energy Security Environment / Climate Change New Opportunities

Documents
Navigating the Changing Cloud Security Landscape · Navigating the Changing Cloud Security Landscape Dell cloud security white paper | September 2013 As cloud security threat levels

Navigating the Changing Cloud Security Landscape · Navigating the Changing Cloud Security Landscape Dell cloud security white paper | September 2013 As cloud security threat levels

Documents
Surviving the Ever Changing Threat Landscape the Ever – Changing Threat Landscape Kevin Jordan Cyber Security Specialist Dell SecureWorks • Classification: //Dell SecureWorks/Confidential

Surviving the Ever Changing Threat Landscape the Ever – Changing Threat Landscape Kevin Jordan Cyber Security Specialist Dell SecureWorks • Classification: //Dell SecureWorks/Confidential

Documents
Changing Healthcare Landscape 040111

Changing Healthcare Landscape 040111

Documents
BOUTIN Beyond Interdependence the Challenge of Economic Security in a Changing Political and Economic Landscape

BOUTIN Beyond Interdependence the Challenge of Economic Security in a Changing Political and Economic Landscape

Documents
Workplace Charging: Comparisonof Sustainable …...Economic security, energy security, and environmental stewardship Changing energy landscape • Natural gas ... ROI calculation background:EVSE

Workplace Charging: Comparisonof Sustainable …...Economic security, energy security, and environmental stewardship Changing energy landscape • Natural gas ... ROI calculation background:EVSE

Documents
Changing Landscape of Business

Changing Landscape of Business

Business
Meeting IT Security Challenges in a Fast-changing Threat Landscape"

Meeting IT Security Challenges in a Fast-changing Threat Landscape"

Technology
Changing landscape, changing supervision

Changing landscape, changing supervision

Documents
Consumerization Security for the Changing Enterprise · The security landscape is changing fast. The rise of consumerization means more devices; more devices mean greater risk. There

Consumerization Security for the Changing Enterprise · The security landscape is changing fast. The rise of consumerization means more devices; more devices mean greater risk. There

Documents
The changing journals landscape

The changing journals landscape

Education
Changing media landscape 08022011

Changing media landscape 08022011

Documents
Lesson Overview Lesson Overview A Changing Landscape Lesson Overview 6.1 A Changing Landscape

Lesson Overview Lesson Overview A Changing Landscape Lesson Overview 6.1 A Changing Landscape

Documents
Application Security in the Changing Risk Landscape Report

Application Security in the Changing Risk Landscape Report

Documents
The Evolving Security Landscape - etouches · The Evolving Security Landscape ... The Changing End-User Landscape ... Cloud Security Cloud computing adoption is < 1% of organizations

The Evolving Security Landscape - etouches · The Evolving Security Landscape ... The Changing End-User Landscape ... Cloud Security Cloud computing adoption is < 1% of organizations

Documents
Timing Security: Mitigating Threats in a Changing ... · Timing Security: Mitigating Threats in a Changing Landscape Webinar May 22, 2018 Panelists: Barry Dropping, Senior Director,

Timing Security: Mitigating Threats in a Changing ... · Timing Security: Mitigating Threats in a Changing Landscape Webinar May 22, 2018 Panelists: Barry Dropping, Senior Director,

Documents
Cyber Security: The changing landscape - KPMG | US · PDF fileOur cyber security journey - global. ... −Mobile security cyber.kpmg.com. Threats ... Cyber Security presentation Author:

Cyber Security: The changing landscape - KPMG | US · PDF fileOur cyber security journey - global. ... −Mobile security cyber.kpmg.com. Threats ... Cyber Security presentation Author:

Documents
Asif Jinnah Microsoft IT – United Kingdom. Security Challenges in an ever changing landscape Evolution of Security Controls: Microsoft’s Secure Anywhere

Asif Jinnah Microsoft IT – United Kingdom. Security Challenges in an ever changing landscape Evolution of Security Controls: Microsoft’s Secure Anywhere

Documents
Changing linguistic landscape, changing teacher ... · Changing linguistic landscape, changing teacher professionalism ... Sensitive combination of language knowledge & teaching technique

Changing linguistic landscape, changing teacher ... · Changing linguistic landscape, changing teacher professionalism ... Sensitive combination of language knowledge & teaching technique

Documents
Changing Media Landscape

Changing Media Landscape

Documents
Facebook: The Changing Landscape

Facebook: The Changing Landscape

Technology
Changing Dist Landscape 9.22.11

Changing Dist Landscape 9.22.11

Documents
The Changing Landscape For U.S. Healthcare Providers: Current and Emerging …newgrowthconsulting.com/The-Changing-Landscape-for... · 2019-12-03 · The Changing Landscape for U.S

The Changing Landscape For U.S. Healthcare Providers: Current and Emerging …newgrowthconsulting.com/The-Changing-Landscape-for... · 2019-12-03 · The Changing Landscape for U.S

Documents
The Changing Landscape

The Changing Landscape

Documents
Changing digital landscape

Changing digital landscape

Technology
THE ‘SECURITY LANDSCAPE’ IS CHANGING RAPIDLY...THE CHANGING ‘SECURITY LANDSCAPE’? The combination of threats, challenges, expectationsand the context in which theytake place

THE ‘SECURITY LANDSCAPE’ IS CHANGING RAPIDLY...THE CHANGING ‘SECURITY LANDSCAPE’? The combination of threats, challenges, expectationsand the context in which theytake place

Documents
Changing Retail Landscape

Changing Retail Landscape

Art & Photos
Industrial Security Protecting networks and facilities …...Industrial Security Protecting networks and facilities against a fast-changing threat landscape 2 Security in The Connected

Industrial Security Protecting networks and facilities …...Industrial Security Protecting networks and facilities against a fast-changing threat landscape 2 Security in The Connected

Documents
COVITS 2011 - The Changing Landscape of Cyber-Security ...media.govtech.net/GOVTECH_WEBSITE/EVENTS/... · Changing Landscape of Cyber-Security – Identity, Credential, and Access

COVITS 2011 - The Changing Landscape of Cyber-Security ...media.govtech.net/GOVTECH_WEBSITE/EVENTS/... · Changing Landscape of Cyber-Security – Identity, Credential, and Access

Documents