The sad truth is that the foundation of traditional enterprise infrastructure centers on resisting change. The Trap Of Resisting Change to Mitigate Risk Do it, and you’ll see a dramatic improvement in enterprise security posture.īefore I describe why and how this works, let’s first take a step back and look at today’s enterprise security culture. Repair vulnerable operating systems and application stacks consistently within hours of patch availability. Faster is safer. It’s not a fantasy - the tools exist to make most of this a reality today. Repave every server and application in the datacenter every few hours from a known good state. Rotate datacenter credentials every few minutes or hours. It’s a radical change from the status quo, but I believe it will dramatically and immediately improve the security posture of any IT organization. In this post, I’ll describe what I believe to be the single most important concept for an enterprise security organization to grasp when evaluating cloud infrastructure. Often they are calcified within the organization. I’ve observed another common trait - security is a top concern, both with their existing infrastructure and their next generation cloud infrastructure.īehaviorally, there is an instinctual reach for previously defined tools and methodologies to help ensure the appropriate level of security. All of them want to deliver applications at a faster pace, and they are willing to try new tools, techniques, and processes to get there. Most recently at Pivotal, I’ve worked closely with some of the most forward-looking enterprises in the world. In the last 10 years, I’ve had the privilege of working on cloud security at Microsoft, Google, and Pivotal.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |