22 subscribers
התחל במצב לא מקוון עם האפליקציה Player FM !
Software at Scale 39 - Infrastructure Security with Guy Eisenkot
Manage episode 314880073 series 2899471
Guy Eisenkot is a Senior Director of Product Management at BridgeCrew by Prisma Cloud and was the co-founder of BridgeCrew, an infrastructure security platform.
We deep dive into infrastructure security, Checkov, and BridgeCrew in this episode. I’ve personally been writing Terraform for the last few weeks, and it often feels like I’m flying blind from a reliability/security perspective. For example, it’s all too easy to create an unencrypted S3 bucket in Terraform which you’ll only find out about when it hits production (via security tools). So I see the need for tools that lint my infrastructure as code more meaningfully, and we spend some time talking about that need.
We also investigate “how did we get here”, unravel some infrastructure as code history and the story behind Checkov’s quick popularity. We talk about how ShiftLeft is often a painfully overused term, the security process in modern companies, and the future of security, in a world with ever-more infrastructure complexity.
Highlights
00:00 - Why is infrastructure security important to me as a developer?
05:00 - The story of Checkov
09:00 - What need did Checkov fulfil when it was released?
10:30 - Why don’t tools like Terraform enforce good security by default?
15:30 - Why ShiftLeft is a tired, not wired concept.
20:00 - When should I make my first security hire?
24:00 - Productizing what a security hire would do.
27:00 - Amazon CodeGuru but for security fixes - Smart Fixes.
33:00 - Is it possible to write infrastructure as code checks in frameworks like Pulumi?
37:00 - Not being an early adopter when it comes to infrastructure tools.
40:00 - The Log4J vulnerability, and the security world moving forward.
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.softwareatscale.dev
60 פרקים
Manage episode 314880073 series 2899471
Guy Eisenkot is a Senior Director of Product Management at BridgeCrew by Prisma Cloud and was the co-founder of BridgeCrew, an infrastructure security platform.
We deep dive into infrastructure security, Checkov, and BridgeCrew in this episode. I’ve personally been writing Terraform for the last few weeks, and it often feels like I’m flying blind from a reliability/security perspective. For example, it’s all too easy to create an unencrypted S3 bucket in Terraform which you’ll only find out about when it hits production (via security tools). So I see the need for tools that lint my infrastructure as code more meaningfully, and we spend some time talking about that need.
We also investigate “how did we get here”, unravel some infrastructure as code history and the story behind Checkov’s quick popularity. We talk about how ShiftLeft is often a painfully overused term, the security process in modern companies, and the future of security, in a world with ever-more infrastructure complexity.
Highlights
00:00 - Why is infrastructure security important to me as a developer?
05:00 - The story of Checkov
09:00 - What need did Checkov fulfil when it was released?
10:30 - Why don’t tools like Terraform enforce good security by default?
15:30 - Why ShiftLeft is a tired, not wired concept.
20:00 - When should I make my first security hire?
24:00 - Productizing what a security hire would do.
27:00 - Amazon CodeGuru but for security fixes - Smart Fixes.
33:00 - Is it possible to write infrastructure as code checks in frameworks like Pulumi?
37:00 - Not being an early adopter when it comes to infrastructure tools.
40:00 - The Log4J vulnerability, and the security world moving forward.
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.softwareatscale.dev
60 פרקים
כל הפרקים
×
1 Software at Scale 60 - Data Platforms with Aravind Suresh 34:51

1 Software at Scale 59 - Incident Management with Nora Jones 44:06

1 Software at Scale 58 - Measuring Developer Productivity with Abi Noda 49:29

1 Software at Scale 57 - Scalable Frontends with Robert Cooke 55:42

1 Software at Scale 56 - SaaS cost with Roi Rav-Hon 28:29

1 Software at Scale 55 - Troubleshooting and Operating K8s with Ben Ofiri 44:11

1 Software at Scale 54 - Community Trust with Vikas Agarwal 40:48

1 Software at Scale 53 - Testing Culture with Mike Bland 1:06:52

1 Software at Scale 52 - Building Build Systems with Benjy Weinberger 1:02:57

1 Software at Scale 51 - Usage based Pricing with Puneet Gupta 1:05:05

1 Software at Scale 50 - Redefining Labor with Akshay Buddiga 1:15:46

1 Software at Scale 49 - State Management with James Cowling 53:18

1 Software at Scale 48 - API Gateway Management with Josh Twist 49:36

1 Software at Scale 47 - OpenTelemetry with Ted Young 1:33:41

1 Software at Scale 46 - Authorization with Or Weis 49:05
ברוכים הבאים אל Player FM!
Player FM סורק את האינטרנט עבור פודקאסטים באיכות גבוהה בשבילכם כדי שתהנו מהם כרגע. זה יישום הפודקאסט הטוב ביותר והוא עובד על אנדרואיד, iPhone ואינטרנט. הירשמו לסנכרון מנויים במכשירים שונים.