Implementing the principle of least privilege across all 42k+ permissions and 600+ services presents an overwhelming challenge. Achieving this is impossible and unsustainable, given the rate at which dev teams request new access. We must redefine least privilege and what it means to be secure in the cloud. There’s a way to focus on only permissions that matter, reduce access requests, and make it easier for Cloud Operations to enable DevOps without ever compromising least privilege.
During this session you’ll learn the following:
How to deal with the sprawl of cloud infrastructure (services and unique permissions)
The four methods to apply to get to least privilege at scale in the cloud
A philosophical approach to remove the friction between security and Devops
How to sustain a baseline via fewer access requests and focused enforcement
This presentation was originally presented in partnership with Techstrong.
