Wednesday, April 28, 2021
It is often believed that there’s a built-in tension between software developers and security engineers. The first ones want to move fast with the latter wish to make sure the data, pipes and crown jewels are well protected.
Working in the cloud did give the developers the velocity they always wanted - they have their own account, they can provision cloud assets and can deploy frequently and easily. But they also use admin permissions and leave open buckets everywhere.
The security team at turn finds risky cloud misconfigurations and has to go back to the dev team to check if that was necessary or not. This is a repetitive, time-consuming process that creates friction and sometimes tension between the two teams.
In this talk I will share with you how working with developers instead of trying to clean up after them, actually makes their work much faster, better and more secure.
Download these images to your phone and post using the Instagram app.