Building cloud native apps doesn't mean you're immune to dealing with legacy systems. Cloud services have changed significantly over the last decade, both in the security controls available to them and the sheer volume of services that CSPs provide. Scott Piper shares some history of cloud security, the benefits of account separation, and how ratcheting security helps orgs stay on a paved path.
Segment resources:
Scott Piper works on Wiz’s Threat Research team where he analyzes risks within AWS environments. Prior to that, he worked on security teams and as a cloud security consultant. He helps organize the fwd:cloudsec conference, admins the Cloud Security Forum Slack, and maintains a number of resources in his role as the Internet’s cloud security historian. His more popular projects were the open-source tool CloudMapper and the CTF flaws.cloud.
