Learn about continuous security assessment and remediation
Cavirin - Hybrid Cloud Security. De-risk your cloud migrations, combining on-premise, AWS, GCP, Microsoft Azure, Docker, and SaaS capabilities. Follow best practices and if regulated, remain in compliance. Learn how!
Join us on Thursday, December 7th at 10:00AM PT as DevSecOps expert and writer, Gregory S. Bledsoe (@geek_king on Twitter), provides insight into balancing quickness with security into the DevOps environment. In addition, Dr Ravi Rajamiyeri, VP Engineering at Cavirin, will demonstrate the steps required to securing the container (Docker/Kubernetes) lifecycle.
Competition is fierce and today’s businesses cannot afford to slow down their development processes to wait for security to catch up. Development lag time could mean the difference between success and failure, so DevOps and SecOps must find ways to unite. Securing the application lifecycle from the beginning has become key to making DevSecOps real.
What you will learn:
>> The why, the what, and the how of DevSecOps
>> Repackaging security and looking at change as an opportunity
>> How to refine a standard DevOps workflow to address security requirements
>> Automating security through the container lifecycle
According to Gartner, “The NIST Cybersecurity Framework is an absolute minimum of guidance for new or existing cybersecurity risk programs, and is a legal framework for aligning IT to OT security.” However, even with this strong guidance many organizations are still hesitant to implement the security framework because, at first glance, it can appear overwhelming.
Join us on Tuesday, October 31st, at 10:00 AM PT, as Cybersecurity and compliance experts, Pravin Goyal and Anupam Sahai, will provide insight on successfully implementing and automating CSF and NIST 800-171 across cloud, on-premise, and hybrid cloud infrastructures.
What You Will Learn:
>> The five NIST Cybersecurity Framework functions
>> NIST’s seven steps for establishing a cybersecurity program
>> How to map and automate technical controls defined in CSF
>> How CSF works with other security frameworks (including NIST 800-171)
>> NIST 800-171 compliance
Is your cybersecurity protection making the grade? Healthcare rates a 'C' in security, almost half of US residents have been compromised, and the end-user impact is tens of billions of dollars a year.
An easy first step is understanding the attack vectors and automating HIPAA technical controls. This automation lets you quickly understand your baseline security posture both on-premise and within the public cloud, where you have gaps, and how to remediate them.
Docker adoption has surged, up 40% over the past year, taking the lead for DevOps tools on AWS. With this transformation, enterprises are looking for ways to confidently introduce Docker into their Cloud environment. Join us as Cavirin experts guide you through:
> Securing EC2 Container Services, as well as Docker images, brought in from different registries
> Integrating CloudTrail and CloudFormation
> Today's best Docker security practices on AWS
> The latest on Kubernetes
Are containers & Docker secure? We look at best practices across their lifecycle, including image scanning within CI/CD process, container OS hardening, and orchestration security with Kubernetes. Guest speaker is Izak Mutlu, former CISO at Salesforce.