Is having a CSPM enough for Cloud Security? At RSA Conference 2024, Ashish sat down with returning guest Jimmy Mesta, Co-Founder and CTO of RAD Security, to talk about the complexities of Kubernetes security and why sometimes traditional Cloud Security Posture Management (CSPM) falls short in a Kubernetes-centric world.
We speak about the significance of behavioural baselining, the limitations of signature-based detection, the role of tools like eBPF in enhancing real-time security measures and the importance of proactive security measures and the need for a paradigm shift from reactive alert-based systems to a more silent and efficient operational model.
Questions asked:
00:00 Introduction
03:12 A bit about Jimmy Mesta
03:48 What is Cloud Native Security?
05:15 How is Cloud Native different to traditional approach?
07:37 What is eBPF?
09:12 Why should we care about eBPF?
11:51 Separating the signal from the noise
13:48 Challenges on moving to Cloud Native
15:58 Proactive Security in 2024
17:02 Whose monitoring Cloud Native alerts?
23:10 Getting visibility into the complexities of Kubernetes
24:24 Skillsets and Resources for Kubernetes Security
27:54 The Fun Section
--------------------------------------------------------------------------------
📱Cloud Security Podcast Social Media📱
_____________________________________
🛜 Website: cloudsecuritypodcast.tv/
🧑🏾‍💻 Cloud Security Bootcamp - www.cloudsecuritybootcamp.com/
✉️ Cloud Security Newsletter - www.cloudsecuritynewsletter.com/
Twitter: / cloudsecpod
LinkedIn: / cloud-security-podcast
#cloudsecurity