Security is often misunderstood. No wonder, given how the community only focuses on how security stops attacks and defends against threats. The reality is much broader. Security makes sure that whatever you build works as intended, and only as intended. This is a key tenet of resiliency and is a critical part of any technology or business.
I help teams build the culture and systems required to be resilient and deliver consistent, repeatable business success.
Security teams have grown to address very specific needs. Their structure can make it especially challenging to deliver great service to other areas of the business. Here's how you can start other change that.
Let's Talk Cloud was a show I launched for Trend Micro. Each episode I spoke with a member of the wider community and together we explored a specific topic in cloud security.
Over eight years, I had a lot of fun appearing on CBC helping Canadians to better understand technology and how it impacts us and our communities.
AWS re:Invent is the biggest conference in cloud and has been growing year over year. For several years in a row, I wrote THE guide that helped hundreds of thousands of folks get the most out of the show.
In this talk, we’ll start to examine communication techniques that can have a positive impact. We’ll look at how you can shift your work from constant response to more impactful efforts by laying the groundwork for others to succeed.
Passwords suck. Why are we forced to follow these weird rules. Do they really keep us safe? Here is a solid way to safely handle all of your passwords.
Most security practices make the same set of mistakes when moving to the cloud. This talk looks at those mistakes and how to avoid them.
There are massive opportunities to advance your security practice as your business moves into the cloud. This talk provides a step-by-step approach that will help you maximize them.
Misconfigurations are the number one security concern in the cloud. Guardrails can help you prevent misconfigurations from happening. This talk shows you the principles behind sustainable, useful guardrails.
There’s always more than one way to solve a problem. That’s a big advantage of AWS, but it can also be overwhelming to deal with. You will make mistakes. That's ok.
To make sure that systems work as intended and only as intended. That's the goal of cybersecurity.
The Unicorn Project is the latest book from Gene Kim, one of the leaders of the DevOps movement. The book focuses on developer enablement and culture. What does this have to do with cloud security? Everything.
Security is often spoken of in absolutes. Is this secure? Is that insecure? The reality is that security is a spectrum. It is a series of implicit and explicit decisions made to meet the business needs within an acceptable risk tolerance.