Marc Tremsal (@mtremsal, Director Product Management @datadoghq) talks about the intersection of observability and security, if SRE needs a DevSecOps transition, using security data for modeling, and tips to make immediate impacts on overall security.
SHOW: 454
SHOW SPONSOR LINKS:
CLOUD NEWS OF THE WEEK - http://bit.ly/cloudcast-cnotw
PodCTL Podcast is Back (Enterprise Kubernetes) - http://podctl.com
SHOW NOTES:
Topic 1 - Welcome to the show. You’ve played a role in helping to design systems that secure some of the most critical environments in the world. Tell us a little bit about your background.
Topic 2 - We’ve talked about monitoring, observability and in various ways “security”, but how do you see all those things beginning to come together more these days?
Topic 3 - As we get into more distributed environments, especially for security (authentication, encryption, key-management, proxies, etc.), how should people think about a framework to have visibility and be able to take action across these distributed systems?
Topic 4 - Is this visibility of security-related activities (or potentially security-associated) mostly useful for real-time security threats (e.g. “we’re being attacked”), or can it also be used for more long-term types of activities (planning, threat modeling, chaos engineering, etc.)?
Topic 5 - Can you share with us any customer-centric stories of how this is helping companies deliver better services, or more uptime for their services?
Topic 6 - What are some tips you can share with the audience today that would help them make immediate impacts to how them monitor for security?
FEEDBACK?