There is a lot of buzz around cloud security on Google Cloud Platform, involving terms and jargon that sound intimidating to beginners and experts alike. Security isn't an abstract concept but something we practice in our day-to-day life, consciously or subconsciously. Applying security best practices and identifying threats on the cloud is possible.
Vijeta Pai ( @Vijeta90 ), technology leader, creator of Cloud Demystified, and regular contributor to C2C hosted this C2C Talks. The presentation portion from this session includes:
- (1:25) Speaker introduction
- (3:25) Types of cloud providers
- Public cloud and space shared between organizations
- Private cloud and space exclusive for one organization
- Hybrid cloud using both public and private clouds
- (9:05) Cloud security technologies, processes, controls, and policies
- (11:45) STRIDE threat model
- (17:00) Security as a shared responsibility for IaaS, PaaS, and SaaS
- (19:45) Google Cloud risk protection program
- (21:10) Overview of Vijeta's best practices for cloud security in application development