Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Cloud Security Engineering: The Profession of t...

Avatar for Sena Yakut Sena Yakut
September 21, 2024
0
69

Cloud Security Engineering: The Profession of the Future

Avatar for Sena Yakut

Sena Yakut

September 21, 2024
Tweet

More Decks by Sena Yakut

See All by Sena Yakut
AWS Cloud Security Fundamentals
Avatar for Sena Yakut senayakut
0
29
When Cloud Security Meets AI: A Playbook for the Future Leaders
Avatar for Sena Yakut senayakut
0
48
Oops, I Broke It Again - Practicing Safe Chaos in the Cloud
Avatar for Sena Yakut senayakut
0
49
Your AWS Account Got Hacked. What Happens Now?
Avatar for Sena Yakut senayakut
0
55
From Prompt to Prediction: Understanding LLM Outputs
Avatar for Sena Yakut senayakut
0
35
Thank U, Next... Prompt - Securing Generative AI Like a Queen
Avatar for Sena Yakut senayakut
0
66
Dangerous by Design Cloud Security Flaws We Keep Repeating
Avatar for Sena Yakut senayakut
0
360
re:Inforce 2025 - Serverless Threat Response for Amazon S3 Malware Detection
Avatar for Sena Yakut senayakut
0
75
Falling in Love with the Cloud – Securely
Avatar for Sena Yakut senayakut
0
86

Featured

See All Featured
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
331
21k
Visualization
Avatar for Eitan Lees eitanlees
150
17k
Between Models and Reality
Avatar for mayunak mayunak
1
190
Getting science done with accelerated Python computing platforms
Avatar for Jacob Tomlinson jacobtomlinson
2
120
A brief & incomplete history of 
UX Design for the World Wide Web: 1989–2019
Avatar for Jason CranfordTeague jct
1
300
The Illustrated Guide to Node.js - THAT Conference 2024
Avatar for David Neal reverentgeek
0
260
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
Avatar for Vitaly Friedman smashingmag
254
22k
XXLCSS - How to scale CSS and keep your sanity
Avatar for Zaharenia Atzitzikaki sugarenia
249
1.3M
16th Malabo Montpellier Forum Presentation
Avatar for AKADEMIYA2063 akademiya2063
PRO
0
52
Effective software design: The role of men in debugging patriarchy in IT @ Voxxed Days AMS
Avatar for Kenny Baas-Schwegler baasie
0
230
Improving Core Web Vitals using Speculation Rules API
Avatar for Sergey Chernyshev sergeychernyshev
21
1.4k
Chasing Engaging Ingredients in Design
Avatar for Sebastian Deterding codingconduct
0
110

Transcript

  1. Sensitivity: Public Cloud Security Engineering The Profession of the Future

    Sena Yakut, CyberKonf Istanbul

  2. Sensitivity: Public ® aws sts get-caller-identity Sena Yakut, Cloud Security

    Architect @CyberWhiz All details, links about me:

  3. Sensitivity: Public Rise of the cloud computing is undeniable. Read

    all report:

  4. Sensitivity: Public Rise of the cloud security is undeniable. •

    Great time to enter this field • Companies are looking experts who can secure their cloud environments. • Cloud security → Young profession • Lots of work, less talent Melting Face Emoji - what it means and how to use it

  5. Sensitivity: Public So, what is cloud security engineering? • Means

    different for different companies (SOC, Site Reliability Engineer, AppSec Engineer etc.)

  6. Sensitivity: Public So, what is cloud security engineering? • Should

    be comfortable with different tech stacks: • From serverless to containers, • From zero to hero.

  7. Sensitivity: Public So, what is cloud security engineering? • Automation

    is everything for us. • Design, develop, maintain security tasks with automation. • Integrate them into the development lifecycle.

  8. Sensitivity: Public So, what is cloud security engineering? • Works

    close with different teams → AppSec, DevOps, Pentest, VM... • I said we have lots of work Melting Face Emoji - what it means and how to use it

  9. Sensitivity: Public What should we do? • Make time to

    learn every day. Believe me. Everyday. • Read eveything.

  10. Sensitivity: Public What should we do? • Avoid significant gaps

    in your knowledge. • Be paranoid. Be curious. Always ask “How can I secure this?”

  11. Sensitivity: Public What should we do? Sometimes, you need to

    handle this by yourself.

  12. Sensitivity: Public What should we do? • Avoid relying on

    AI chatbots. Do research. Really. • Do experiment, build something, broke something in the cloud.

  13. Sensitivity: Public What should we do? • Analyze open source

    projects. • Learn CI/CD – DevSecOps: AWS Inspector for Code Quality, VM etc.

  14. Sensitivity: Public What should we do? • Understand & learn

    container security • Documentation → Write everything when you test. Melting Face Emoji - what it means and how to use it

  15. Sensitivity: Public What should we do? • Learn IaC, start

    with AWS. • Certifications???

  16. Sensitivity: Public What should we do? CS Coding Version Control

    Security Concepts OS Networking Scripting Software Design Principles OWASP Top 10 Auth Systems Cryptography

  17. Sensitivity: Public Questions?