Considering a Dramatically Different Paradigm to Ensure Security; How the Dynamic and Abstracted Infrastructure can be More Secure than Ever (C12b)
Cloud security, and by extension compliance are challenged by an ever-evolving threat landscape. The dynamics are constantly in flux and it can be a never-ending, unwinnable battle.
What if we considered a completely different security paradigm that is empowered by deep situational awareness and context, and using that knowledge to better understand what good is, rather than fruitlessly trying to chase down the bad?
With virtualized infrastructure and networks that span hybrid clouds, it is possible to have more visibility, more dynamism and more flexibility in IT Operations than ever before. With this capability, we can start to think of enforcing the 5 pillars of cyber hygiene (Least Privilege, Microsegmentation, Encryption, Multi-Factor Authentication and Patching) from the on-premise datacenter, to the cloud, to endpoints at the edge better than we have ever been able to before. With a well understood software supply chain, better visibility, and Machine Learning and Artificial Intelligence, it is possible to have a better grasp and awareness of expected behavior, and then use that to have better visibility and automated response to bad actors within the system. The cloud no longer needs to be seen as a security risk, rather it can be a security feature.