EP193 Inherited a Cloud? Now What? How Do I Secure It?

Update: 2024-10-07

Description

Guests:

Taylor Lehmann, Director at Office of the CISO, Google Cloud
Luis Urena, Cloud Security Architect, Google Cloud

Topics

There is a common scenario where security teams are brought in after a cloud environment is already established. From your experience, how does this late involvement typically impact the organization's security posture and what are the immediate risks they face?
Upon hearing this, many experts suggest that “burn the environment with fire” or “nuke it from orbit” are the only feasible approaches? What is your take on that suggestion?
On the opposite side, what if business demands you don't touch anything but “make it secure” regardless?
Could you walk us through some of the first critical steps you do after “inheriting a cloud” and why they are prioritized in this way?
Why not just say “add MFA everywhere”? What may or will blow up?
We also say “address overly permissive users and roles” and this sounds valuable, but also tricky. How do we go about it?
What are the chances that the environment is in fact compromised already? When is Compromise Assessment the right call, it does cost money, right?
How do you balance your team’s current priorities when you’ve just adopted an insecure cloud environment. How do you make tradeoffs among your existing stack and this new one?

Resources:

Comments

Top Podcasts

The Best New Comedy Podcast Right Now – June 2024 The Best News Podcast Right Now – June 2024 The Best New Business Podcast Right Now – June 2024 The Best New Sports Podcast Right Now – June 2024 The Best New True Crime Podcast Right Now – June 2024 The Best New Joe Rogan Experience Podcast Right Now – June 20 The Best New Dan Bongino Show Podcast Right Now – June 20 The Best New Mark Levin Podcast – June 2024

In Channel

EP211 Decoding the Underground: Google's Dual-Lens Threat Intelligence Magic

2025-02-1726:02

EP210 Cloud Security Surprises: Real Stories, Real Lessons, Real "Oh No!" Moments

2025-02-1026:58

EP209 vCISO in the Cloud: Navigating the New Security Landscape (and Don’t Forget Resilience!)

2025-02-0329:06

EP208 The Modern CISO: Balancing Risk, Innovation, and Business Strategy (And Where is Cloud?)

2025-01-2731:19

EP207 Slaying the Ransomware Dragon: Can a Startup Succeed?

2025-01-2032:55

EP206 Paying the Price: Ransomware's Rising Stakes in the Cloud

2025-01-1305:22

EP205 Cybersecurity Forecast 2025: Beyond the Hype and into the Reality

2025-01-0628:19

EP204 Beyond PCAST: Phil Venables on the Future of Resilience and Leading Indicators

2024-12-2330:32

EP203 Cloud Shared Responsibility: Beyond the Blame Game with Rich Mogull

2024-12-1637:13

EP202 Beyond Tiered SOCs: Detection as Code and the Rise of Response Engineering

2024-12-0937:09

EP201 Every CTO Should Be a CSTO (Or Else!) - Transformation Lessons from The Hoff

2024-12-0236:57

EP200 Zero Touch Prod, Security Rings, and Foundational Services: How Google Does Workload Security

2024-11-2527:38

EP199 Your Cloud IAM Top Pet Peeves (and How to Fix Them)

2024-11-1829:26

EP198 GenAI Security: Unseen Attack Surfaces & AI Pentesting Lessons

2024-11-1127:22

EP197 SIEM (Decoupled or Not), and Security Data Lakes: A Google SecOps Perspective

2024-11-0429:34

EP196 AI+TI: What Happens When Two Intelligences Meet?

2024-10-2828:08