Enterprise software security traditionally resists change as a matter of unquestioned policy. Vulnerability is a function that changes with time. The probability of being exploited increases with the accumulation of long lived credentials and unpatched code. The question that must be asked is: how can a security strategy which resists change keep up with the pace of the modern threat landscape? This asymmetry in speed and adaptiveness only creates advantages for the attacker. What if the only what to increase security is to move as fast as possible? Continuously rotating credentials, patching systems, and rebuilding clusters to minimize windows of vulnerability decreases the threat profile in time and severity. This presentation will outline principles and practices of Cloud Native Security and how Cloud Foundry can be part of your strategy to increase velocity and security.
Justin is one of the most experienced cloud security professionals in the industry. He's worked on security teams at Microsoft Azure and Google, and he's now at Pivotal focusing on product security. He's the author of the 3Rs strategy and the driving force behind CredHub.
