Threat Models and Cloud Security

Guest:

• Seth Vargo, Security Engineer @ Google Cloud

Topics:

• How should security teams change their thinking about threats in the cloud?
• Where and when should an organization start in building their threat model for their cloud environment?
• What are the key changes of threat models after cloud migration?
• More specifically, when it comes to identity, credentials, lateral movement, what are the key ways in which cloud security differs from traditional or on-premises security?
• How should users who are leading the cloud migration help their colleagues think about security in the cloud?
• When am I "done" with cloud security planning?