41 min listen
Security Operations with Elliott Abraham and Jason Bisson
Security Operations with Elliott Abraham and Jason Bisson
ratings:
Length:
35 minutes
Released:
May 27, 2020
Format:
Podcast episode
Description
We’re discussing security operations on the podcast this week with your hosts Priyanka Vergadia and Mark Mirchandani. They’re joined by Elliott Abraham and Jason Bisson who start the interview explaining that they created the CLAM framework to help customers use Google Cloud security features to their fullest potential to create safe projects and relaxed clients.
The CLAM (Cloud Logging Alerting and Monitoring) framework came about specifically to help customers transition products to, and run products securely in, the cloud. Using the Mitre GCP Matrix, the security team addressed each element with GCP product solutions, from initial access to persistence and beyond. CLAM is GCP specific, taking into account the default security measures GCP already provides and supplementing these measures with appropriate procedures for each client. Once the framework is in place and things are secure, clients can build on that with operational controls, such as SRE best practices.
Elliott explains the shared security model and how clients can shift more of the security responsibility to the cloud service provider by employing more managed services. Jason tells us about VPC Service Controls and how they allow clients to set specific security rules such as from where data can be accessed. They go on to describe the GCP Security Command Center and the tools available there.
We wrap up the interview with some tips from our guests, including what to do if you are compromised.
Elliott Abraham
Elliott Abraham is a Security and Compliance Specialist based in Atlanta. Elliott works with Financial Services, Healthcare and Life Sciences and other Select Accounts migrating to or expanding their footprint on the Google Cloud Platform. Elliott has helped many customers to operationalize GCP Security solutions in alignment with their security, compliance, and regulatory requirements.
Jason Bisson
Jason Bisson is a Security and Compliance Specialist based in NYC. He works with Financial Services, Healthcare, Government, and Retail customers to explain the security, compliance, and regulatory abilities of Google Cloud Platform.
Cool things of the week
Announcing Google Cloud Next ‘20: OnAir blog
Celebrating a decade of data: BigQuery turns 10 blog
A very special BigQuery Day (The Data Show, w/ Felipe Hoffa & Yufeng Guo) video
Interview
CLAM Framework pdf
Mitre site
Mitre ATT&CK site
Mitre GCP Matrix site
SRE Handbook site
VPC Service Controls site
Cloud Audit Logs site
Cloud Data Loss Prevention site
GCP Podcast Episode 218: Chronicle Security with Dr. Anton Chuvakin and Ansh Patniakpodcast
GCP Podcast Episode 221: BeyondCorp with Robert Sadowski podcast
Tip of the week
Yuri Grinshteyn talks about the new logging feature.
What’s something cool you’re working on?
Priyanka is working on Building an Unbreakable DevOps Pipeline with Google Cloud.
Mark is working on more videos and will be speaking at Next.
The CLAM (Cloud Logging Alerting and Monitoring) framework came about specifically to help customers transition products to, and run products securely in, the cloud. Using the Mitre GCP Matrix, the security team addressed each element with GCP product solutions, from initial access to persistence and beyond. CLAM is GCP specific, taking into account the default security measures GCP already provides and supplementing these measures with appropriate procedures for each client. Once the framework is in place and things are secure, clients can build on that with operational controls, such as SRE best practices.
Elliott explains the shared security model and how clients can shift more of the security responsibility to the cloud service provider by employing more managed services. Jason tells us about VPC Service Controls and how they allow clients to set specific security rules such as from where data can be accessed. They go on to describe the GCP Security Command Center and the tools available there.
We wrap up the interview with some tips from our guests, including what to do if you are compromised.
Elliott Abraham
Elliott Abraham is a Security and Compliance Specialist based in Atlanta. Elliott works with Financial Services, Healthcare and Life Sciences and other Select Accounts migrating to or expanding their footprint on the Google Cloud Platform. Elliott has helped many customers to operationalize GCP Security solutions in alignment with their security, compliance, and regulatory requirements.
Jason Bisson
Jason Bisson is a Security and Compliance Specialist based in NYC. He works with Financial Services, Healthcare, Government, and Retail customers to explain the security, compliance, and regulatory abilities of Google Cloud Platform.
Cool things of the week
Announcing Google Cloud Next ‘20: OnAir blog
Celebrating a decade of data: BigQuery turns 10 blog
A very special BigQuery Day (The Data Show, w/ Felipe Hoffa & Yufeng Guo) video
Interview
CLAM Framework pdf
Mitre site
Mitre ATT&CK site
Mitre GCP Matrix site
SRE Handbook site
VPC Service Controls site
Cloud Audit Logs site
Cloud Data Loss Prevention site
GCP Podcast Episode 218: Chronicle Security with Dr. Anton Chuvakin and Ansh Patniakpodcast
GCP Podcast Episode 221: BeyondCorp with Robert Sadowski podcast
Tip of the week
Yuri Grinshteyn talks about the new logging feature.
What’s something cool you’re working on?
Priyanka is working on Building an Unbreakable DevOps Pipeline with Google Cloud.
Mark is working on more videos and will be speaking at Next.
Released:
May 27, 2020
Format:
Podcast episode
Titles in the series (100)
Amazing Demos from GCP Next with Instrument: In the twenty first episode of this podcast, your hosts Francesc and Mark interview three of the engineers at Instrument, responsible for some of the amazing demos at GCP Next. by Google Cloud Platform Podcast