Brian Johnson (SVP Cloud Security Practice @rapid7) talks about the evolution of the Managed Security Provider market, manage security without borders, and the complexities of multiple identity and trust models.
SHOW: 467
SHOW SPONSOR LINKS:
CLOUD NEWS OF THE WEEK - http://bit.ly/cloudcast-cnotw
PodCTL Podcast is Back (Enterprise Kubernetes) - http://podctl.com
SHOW NOTES:
Topic 1 - Welcome to the show. You were the CEO/co-founder of DivvyCloud, which was recently purchased by Rapid7. Give us an overview of the Managed Security Provider market and some of the ways it’s evolved since the pandemic started.
Topic 2 - In today’s world, there no longer is a security perimeter for companies in the way they’ve known for years. What is replacing how companies define perimeters - is identity the new perimeter?
Topic 3 - Can you talk about what kind of Identity management companies need today, and maybe talk through some of the nuances across the disciplines like Identity and Access Management (IAM), Privileged Access Management (PAM), and Identity Governance and Administration (IGA).
Topic 4 - Where does MFA (multi-factor authentication) sit within a strong IAM strategy? For example enforcing policies across cloud user accounts?
Topic 5 - We’ve seen some data suggesting over 80%+ of organizations are using a multi-cloud strategy, can you talk about some of the challenges around trying to manage IAM acros clouds? For example (Different policies, tools and terminologies across clouds)
Topic 6 - The security world is beginning to talk about “unified zero trust security models”. Can you talk about what that means and maybe give us a background about DIvvycloud/Rapid7 and how they are working to solve a lot of these topics around IAM.
FEEDBACK?