Maintaining Consistent Security In Diverse Cloud Infrastructures
HelpNet Security, Tuesday, August 22,2023
In this Help Net Security interview, Kennedy Torkura, CTO at Mitigant, discusses the complexity of maintaining clear visibility into cloud environments, why it poses such a challenge for CISOs, and how they can prepare to address potential issues.
As cloud infrastructures become increasingly API-driven and dynamically spread across expansive attack surfaces, achieving clarity proves difficult. Compounding this challenge is the integration of DevOps practices, microservices, and container technologies, which, while fostering agility and scalability, introduce additional layers of complexity and potential security blind spots.
- Can you discuss the role of visibility in managing cloud security and why it's such a significant challenge for CISOs today?
Visibility into the security posture is critical for staying ahead of the cloud attackers due to the nature of cloud infrastructure. Cloud infrastructure is largely API-driven, composed of dynamic resources mostly spread across a wide attack surface. The combination of these factors and many others poses huge challenges to effective cloud security. Therefore a core requirement for having a grip over cloud security is enabling reliable visibility. Several mechanisms could be leveraged to enhance visibility, including implementing logging and monitoring mechanisms, enabling change management strategies that track all changes in cloud resources and configurations, and implementing threat detection and incident response strategies.