Jeff Bollinger, Director of Incident Response and
Detection Engineering @ Linkedin
Observability sounds cool (please define it for
us BTW), but relating it to security has been “hand-wavy” at best.
What is your opinion on the relevance of observability data for
security use cases? What use cases are those, apart from saving the
data for IR just in case?
How can we best approach observability in the
cloud, particularly around network communications, so that we
improve security as a result?
Are there other areas of cloud where
observability might be more relevant? Does the massive shift to
TLS 1.3 impact
If the Internet is shifting towards an
end-user/device centric model with everything as a service (SaaS),
how does security monitoring even work anymore?
Does it mean the end of both endpoint and
network eras and the arrival of the application security monitoring
Can we do deep monitoring of complex
applications and app clusters for abuse or should we just focus on
identity and profiling?
Cloud Security Podcast by Google focuses on security in the cloud, delivering security from the cloud, and all things at the intersection of security and cloud. Of course, we will also cover what we are doing in Google Cloud to help keep our users' data safe and workloads secure.
We’re going to do our best to avoid security theater, and cut to the heart of real security questions and issues. Expect us to question threat models and ask if something is done for the data subject’s benefit or just for organizational benefit.
We hope you’ll join us if you’re interested in where technology overlaps with process and bumps up against organizational design. We’re hoping to attract listeners who are happy to hear conventional wisdom questioned, and who are curious about what lessons we can and can’t keep as the world moves from on-premises computing to cloud computing.