Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Cloud Security Engineering: The Profession of t...

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for Sena Yakut Sena Yakut
September 21, 2024
76
0

Cloud Security Engineering: The Profession of the Future

Avatar for Sena Yakut

Sena Yakut

September 21, 2024

More Decks by Sena Yakut

See All by Sena Yakut
AWS Cloud Security Fundamentals
Avatar for Sena Yakut senayakut
0
77
When Cloud Security Meets AI: A Playbook for the Future Leaders
Avatar for Sena Yakut senayakut
0
53
Oops, I Broke It Again - Practicing Safe Chaos in the Cloud
Avatar for Sena Yakut senayakut
0
55
Your AWS Account Got Hacked. What Happens Now?
Avatar for Sena Yakut senayakut
0
60
From Prompt to Prediction: Understanding LLM Outputs
Avatar for Sena Yakut senayakut
0
38
Thank U, Next... Prompt - Securing Generative AI Like a Queen
Avatar for Sena Yakut senayakut
0
67
Dangerous by Design Cloud Security Flaws We Keep Repeating
Avatar for Sena Yakut senayakut
0
370
re:Inforce 2025 - Serverless Threat Response for Amazon S3 Malware Detection
Avatar for Sena Yakut senayakut
0
76
Falling in Love with the Cloud – Securely
Avatar for Sena Yakut senayakut
0
89

Featured

See All Featured
Designing for humans not robots
Avatar for Tammie Lister tammielis
254
26k
Intergalactic Javascript Robots from Outer Space
Avatar for Vicent Martí tanoku
273
27k
Designing Powerful Visuals for Engaging Learning
Avatar for Mike Taylor tmiket
1
320
WCS-LA-2024
Avatar for Leonardo Collado-Torres lcolladotor
0
510
The AI Search Optimization Roadmap by Aleyda Solis
Avatar for Aleyda Solis aleyda
1
5.6k
Hiding What from Whom? A Critical Review of the History of Programming languages for Music
Avatar for Tomoya Matsuura tomoyanonymous
2
660
DBのスキルで生き残る技術 - AI時代におけるテーブル設計の勘所
Avatar for soudai sone soudai
PRO
64
53k
The untapped power of vector embeddings
Avatar for Frank van Dijk frankvandijk
2
1.7k
The Organizational Zoo: Understanding Human Behavior Agility Through Metaphoric Constructive Conversations (based on the works of Arthur Shelley, Ph.D)
Avatar for Dr. Kim W Petersen kimpetersen
PRO
0
300
AI: The stuff that nobody shows you
Avatar for John Nunemaker jnunemaker
PRO
4
520
Exploring the relationship between traditional SERPs and Gen AI search
Avatar for Ray Grieselhuber raygrieselhuber
PRO
2
3.8k
The Anti-SEO Checklist Checklist. Pubcon Cyber Week
Avatar for Ryan Jones ryanjones
0
110

Transcript

  1. Sensitivity: Public Cloud Security Engineering The Profession of the Future

    Sena Yakut, CyberKonf Istanbul

  2. Sensitivity: Public ® aws sts get-caller-identity Sena Yakut, Cloud Security

    Architect @CyberWhiz All details, links about me:

  3. Sensitivity: Public Rise of the cloud computing is undeniable. Read

    all report:

  4. Sensitivity: Public Rise of the cloud security is undeniable. •

    Great time to enter this field • Companies are looking experts who can secure their cloud environments. • Cloud security → Young profession • Lots of work, less talent Melting Face Emoji - what it means and how to use it

  5. Sensitivity: Public So, what is cloud security engineering? • Means

    different for different companies (SOC, Site Reliability Engineer, AppSec Engineer etc.)

  6. Sensitivity: Public So, what is cloud security engineering? • Should

    be comfortable with different tech stacks: • From serverless to containers, • From zero to hero.

  7. Sensitivity: Public So, what is cloud security engineering? • Automation

    is everything for us. • Design, develop, maintain security tasks with automation. • Integrate them into the development lifecycle.

  8. Sensitivity: Public So, what is cloud security engineering? • Works

    close with different teams → AppSec, DevOps, Pentest, VM... • I said we have lots of work Melting Face Emoji - what it means and how to use it

  9. Sensitivity: Public What should we do? • Make time to

    learn every day. Believe me. Everyday. • Read eveything.

  10. Sensitivity: Public What should we do? • Avoid significant gaps

    in your knowledge. • Be paranoid. Be curious. Always ask “How can I secure this?”

  11. Sensitivity: Public What should we do? Sometimes, you need to

    handle this by yourself.

  12. Sensitivity: Public What should we do? • Avoid relying on

    AI chatbots. Do research. Really. • Do experiment, build something, broke something in the cloud.

  13. Sensitivity: Public What should we do? • Analyze open source

    projects. • Learn CI/CD – DevSecOps: AWS Inspector for Code Quality, VM etc.

  14. Sensitivity: Public What should we do? • Understand & learn

    container security • Documentation → Write everything when you test. Melting Face Emoji - what it means and how to use it

  15. Sensitivity: Public What should we do? • Learn IaC, start

    with AWS. • Certifications???

  16. Sensitivity: Public What should we do? CS Coding Version Control

    Security Concepts OS Networking Scripting Software Design Principles OWASP Top 10 Auth Systems Cryptography

  17. Sensitivity: Public Questions?