Cloud Security Frameworks: Clarity vs. Confusion – Doug Dooley – ASW #210



We will review the primary needs for cloud security:

– Guardrails against misconfiguration
– Continuously Identify and Remediate Vulnerabilities in Cloud APIs, Apps, and Services
– Observability, Protection, and Reporting against Compliance and Risk Policies
– We will also review CNAPP — Cloud Native Application Protection Platform — and why companies need to take a closer look for the best cloud security

Segment Resources:

https://www.datatheorem.com/news/2021/data-theorem-representative-vendor-cnapp-2021-gartner-innovation-insight-report

Visit https://www.securityweekly.com/asw for all the latest episodes!
Full Episode Show Notes

Cloud Security Frameworks: Clarity vs. Confusion

Guests

Doug Dooley

Doug Dooley – COO at Data Theorem

@dougdooley

Doug is the Chief Operating Officer of Data Theorem. He heads up product strategy, marketing, sales, and customer success teams. Before joining Data Theorem, Dooley worked in venture capital leading investments of cloud-centric security, machine-learning, and infrastructure startups for Venrock. While at Venrock, Dooley served on the boards of Evident.io (Palo Alto Networks), Niara (HPE), and VeloCloud (VMware). Prior to Venrock, Dooley spent almost two decades as an entrepreneur and technology executive at some of the most innovative and market dominant technology infrastructure companies – ranging from large corporations such as Cisco and Intel to security and virtualization startups such as Neoteris, NetScreen, and RingCube. Earlier in his career, he held various management, engineering, sales, and marketing roles at Juniper Networks, Inktomi, and Nortel Networks. Dooley earned a B.S. in Computer Engineering from Virginia Tech.

Hosts

Joe South

Joe South – Sr Content Creator at CyberRisk Alliance

@SecUnfPodcast

Joe South has been working in Cyber Security for over 8 years and has worked at companies of all sizes across multiple industries. Joe is also the host of the Security Unfiltered Podcast where he discusses current cyber security issues and educates his listeners on how to have a successful career in cyber security. Joe is currently in a role where he is empowered to implement a unified control framework across a multi-cloud environment. Joe has also created a widely known blog where he works to help others get into cyber security and have a successful career in the industry. Joe has obtained the CCSP, CCSK, AWS Security Specialty and the AWS CCP certifications, among others.

John Kinsella

John Kinsella – Co-founder & CTO at Cysense

@johnlkinsella

John Kinsella is the Co-founder & CTO of Cysense

Mike Shema

Mike Shema – Security Partner at Square

@Codexatron

Mike Shema is a Security Partner at Square.

Announcements

  • Security Weekly is proud to partner with Hack Red Con for their first annual in-person event! Hack Red Con is happening at the Hyatt Regency in Louisville, KY from September 7th-11th. As a part of our partnership, Security Weekly listeners receive a 10% discount on registration! Visit https://securityweekly.com/hackredcon to register now! We hope to see you there!

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!