Cloud & DevOps Security Summit
The cloud was not built for security. As security technologists, historically chasing developers or IT teams around, we may view an upcoming cloud transition or adoption with fear, misunderstanding, or hardship. Perhaps our organization purchased some security product that will make our lives better, but we learn that it doesn't contextualize the mountain of findings in that single pane of glass after all, in fact it gives us more work with less understanding. Now we have a list of things we may not understand and we certainly cannot just hand it to a team and say "fix this." It does not need to be this way, and it shouldn't be this way. Security has been around a long time, and while its implementation may change, the core principles never do.