It’s been said that complexity is the biggest problem we face in security, and I’ll argue that it’s doubly true when we’re talking about getting our cloud security architectures right. Because the biggest challenge we ultimately face is determining the answer to the question: What’s really different about cloud than what I’m already doing? To […]
Cloud just doesn’t have to be this hard
I’m gonna go out on a limb here, but to me, there’s one specific thing that sets a security leader (head of function, manager or architect) apart from the rest of security professionals, that that one thing is… …the ability to actually think. What that means is having the ability to move beyond blind reliance […]
Framework use vs. alignment
Having almost survived day one of #SAlockdown, I’m going to give the COVID kids a rest for today. Instead, I’m going to talk about something that I’d encountered before in some conversations with people who had/use SABSA, but which, honestly, I didn’t quite understand until I was working on the upcoming April issue of the […]
Keepin’ another mule from kickin’ in your cloud
I have to admit on the morning before the South Africa lockdown – which I just discovered was apparently intended to be booze-free, since all sales of alcohol will also be suspended for 21 days – I was in a bit of a corona funk. I know others have it a lot worse than I […]
Coronanormal cloud architecture
Over the last several years, a lot of big brains have been working on the problem of what “secure cloud” should actually mean. And they’ve spent a lot of time producing a lot of documentation—and a lot of big, complex diagrams that attempt to address every possible aspect of the cloud and how to make […]
