Loading…
Attending this event?
Simple
Expanded
Grid
By Venue
Cloud Security (CloudX) clear filter
Wednesday, November 6
 

10:00am PST

OPEN SESSION (CloudX): Modern Auth & CloudOps Access: Made Easy
Wednesday November 6, 2024 10:00am - 10:25am PST
CloudX -- Main Stage
Chase Doelling, JumpCloud, Principal Strategist

Security driven development does little good if your own front door is left wide open. This session will dive into modern auth techniques with a little history from RBAC to ABAC and how to implement passwordless access to your most critical resources. 
Speakers
avatar for Chase Doelling

Chase Doelling

Principal Strategist, JumpCloud
Chase is a Principal Strategist at JumpCloud, designing authentication strategies and evangelizing customer solutions. He has been working in venture-backed startups across identity, security, integration, and DevOps for the last decade. Chase is a frequent speaker on topics from... Read More →
Wednesday November 6, 2024 10:00am - 10:25am PST
CloudX -- Main Stage
  CloudX: Cloud Architecture & Infrastructure, Cloud Security

11:00am PST

PRO SESSION (CloudX): How We Implemented Zero Trust Security Using Cilium
Wednesday November 6, 2024 11:00am - 11:25am PST
CloudX -- Stage 1
Lakmal Warusawithana, WSO2, Technology Evangelist

Implementing a zero trust approach is essential for security, as it involves verifying and validating every request, irrespective of its origin or location.

In the initial implementation of Choreo, our internal Developer Platform as a Service, we faced challenges in controlling all network access and enforcing authentication, authorization, and seamless network traffic encryption at scale, which is vital for the Choreo cloud service. However, by employing Cilium, K8s, and a cell-based architecture, we were able to develop a scalable platform that upholds zero trust security principles.

The combination of Cilium's eBPF-powered layer 3, 4, and 7 network policies, Hubble Observability, IPSec security, and a cell-based architecture enabled us to address all the critical elements of a zero trust platform successfully.

In this talk, I will detail all the challenges we faced and the strategies we employed to overcome them.
Speakers
avatar for Lakmal Warusawithana

Lakmal Warusawithana

Technology Evangelist, WSO2
Lakmal Warusawithana is the Senior Director - Cloud Architecture of WSO2. Lakmal has a long history of working in open source, cloud, and DevOps technologies and has been Vice President of Apache Stratos PaaS Project. Lakmal has also presented at numerous events, including ApacheCon... Read More →
Wednesday November 6, 2024 11:00am - 11:25am PST
CloudX -- Stage 1
  CloudX: Cloud Architecture & Infrastructure, Cloud Security

11:30am PST

PRO SESSION (CloudX): Harnessing Sandboxing for Secure Application Deployment
Wednesday November 6, 2024 11:30am - 11:55am PST
CloudX -- Stage 1
Ajay Kidave, Clace, Founder

Sandboxing allows for secure software development and deployment. Running code in a sandbox allows installing and running applications while controlling what the applications can do. Sandboxing allows administrators to deploy an application and specify what fine grained operations it can perform. We introduce an open-source project built in go that implements sandboxing features to allow applications to be developed and deployed easily and securely. 
Speakers
avatar for Ajay Kidave

Ajay Kidave

Founder, Clace
Ajay Kidave is the Founder of Clace, an open source project which is using sandboxing to allow the secure development and deployment of internal applications. Previously, Ajay was the Chief Architect at SnapLogic, an enterprise data and application integration service. Before that... Read More →
Wednesday November 6, 2024 11:30am - 11:55am PST
CloudX -- Stage 1
  CloudX: Cloud Architecture & Infrastructure, Deployment Strategies

1:30pm PST

PRO SESSION (CloudX): Simplifying Multi-Cloud Security and Networking using an AI-Powered Approach
Wednesday November 6, 2024 1:30pm - 1:55pm PST
CloudX -- Stage 1
Bhavin Desai, Google, Cross-Cloud Network Product Lead

Organizations increasingly adopt multi-cloud strategies to enhance agility and avoid vendor lock-in. However, this complexity creates challenges in networking, security posture management, and application development. This abstract highlights the potential of service-centric networking to streamline secure connectivity across hybrid and multi-cloud environments. It also explores AI-powered network security capabilities, including zero-trust architecture, next-generation firewalls, secure web proxies, and data loss prevention. By integrating these solutions, organizations can proactively defend their cloud networks, protect workloads, secure data, and ensure user security, ultimately accelerating distributed application development while maintaining a robust security posture. 
Speakers
avatar for Bhavin Desai

Bhavin Desai

Cross-Cloud Network Product Lead, Google
Highly accomplished cloud infrastructure and cybersecurity professional with a strong background in product management, technical solutions architecture, and cloud engineering. Proven expertise with 11+ years of experience in leading strategic initiatives, designing scalable solutions... Read More →
Wednesday November 6, 2024 1:30pm - 1:55pm PST
CloudX -- Stage 1
  CloudX: Cloud Architecture & Infrastructure, Hybrid & Multi-Cloud

2:30pm PST

KEYNOTE (CLOUDX): Sicura -- Automating Compliance for Cloud Image Building
Wednesday November 6, 2024 2:30pm - 2:55pm PST
CloudX -- Main Stage
Kendall Moore, Sicura, CTO

There are too many possibilities for base images in cloud environments and not enough time to validate which ones fulfill all of my requirements. Worse yet, I know that I have policies set by my security team that my infrastructure will be beholden to. So now what? I built an open source policy engine and image generator to implement directly into my build pipelines. I can start with any base image, apply my security policies that are verified by my security team, and now have a baseline that I can rapidly scale my infrastructure from. 
Speakers
avatar for Kendall Moore

Kendall Moore

CTO, Sicura
Dedicated to optimization and designing effective workflows for continuous integration and continuous delivery, Kendall understands the melding of operations and development to quickly deliver code to customers. Has experience with the Cloud and monitoring processes as well as DevOps... Read More →
Wednesday November 6, 2024 2:30pm - 2:55pm PST
CloudX -- Main Stage
  5. KEYNOTES & FEATURED, CloudX
 
Thursday, November 7
 

10:30am PST

OPEN SESSION (CloudX):: Managing Data Security in Multi-Cloud Environments
Thursday November 7, 2024 10:30am - 10:55am PST
API World -- Main Stage
Kevin Hunt, Cloud Storage Security, CTO

Ransomware attacks, breaches, data exfiltration, and insider disclosures are occurring every day around the world. Legacy thinking on providing data security has been focused on the application and platform or operating system. This leads to a somewhat chaotic data security landscape that is likely to have holes and missed handoffs. Modern enterprise systems use and store data using the most effective platform that delivers the convenience and performance required. This open-ended approach to data handling should be addressed through an equally open and flexible approach to securing data regardless of where it is stored or how and when it is used.
Businesses should take a holistic view of their data security to ensure that unintended gaps and inconsistencies that may open the door for threat propagation are detected and mitigated. Enacting multiple layers of data management practices ensures that both stored and inflight data is clean.
This keynote will draw on the Data Security Maturity Model (DSMM) to illustrate the challenges developers and users face in the open landscape of current application deployments. Placing a strong focus on a layered framework that provides consistent and robust security for data as it is used, this approach incorporates seamless malware scanning and detection that provides a constant watch for irregularities and threats.
Speakers
avatar for Kevin Hunt

Kevin Hunt

Chief Technology Officer, Cloud Storage Security (CSS)
As chief technology officer for CSS, Kevin leads the company’s product development, engineering, and customer experience groups in delivering unparalleled cloud storage security solutions that address current and future customer storage security needs. Kevin brings CSS a wealth... Read More →
Thursday November 7, 2024 10:30am - 10:55am PST
API World -- Main Stage
  OPEN SESSIONS, CloudX

3:00pm PST

KEYNOTE (CLOUDX): Trend Micro -- Utilizing a New Threat Model for Software Supply Chain in Cloud-native Systems
Thursday November 7, 2024 3:00pm - 3:25pm PST
CloudX -- Main Stage
Mike Milner, Trend Micro, VP Cloud Technology

As cloud native environments become more secure, attackers are shifting their focus to infiltrate the software supply chain. Securing the software supply chain starts at the beginning of the development process and continues throughout the application’s development lifecycle, but the complexity means that it is easy to miss links in this chain.

This session will construct a threat model that includes everything from the developer work stations, the code and open source libraries that make up an application, to the entire pipeline of building and deploying an app and the teams that maintain it.

Attendees of this session will:
• Understand the steps needed to manage and ensure the security of a broader software supply chain considering quickly evolving tech innovations.
• Learn how to determine the best tools for tracking the software development lifecycle in cloud-native settings.
• Discover how new generative AI tools can help automate some of the monotonous tasks such as fixing or updating older or broken code.
Speakers
avatar for Mike Milner

Mike Milner

VP Cloud Technology, Trend Micro
Mike Milner is the VP Cloud Technology at Trend Micro. Between fighting cybercrime for the Canadian government and working for security agencies overseas, Mike has developed a deep understanding of the global security landscape and how the underground economy dictates hacks and drives... Read More →
Thursday November 7, 2024 3:00pm - 3:25pm PST
CloudX -- Main Stage
  5. KEYNOTES & FEATURED, CloudX
 
Wednesday, November 13
 

10:00am PST

[Virtual] OPEN SESSION (CloudX): Modern Auth & CloudOps Access: Made Easy
Wednesday November 13, 2024 10:00am - 10:25am PST
VIRTUAL CloudX -- Main Stage
Chase Doelling, JumpCloud, Principal Strategist

Security driven development does little good if your own front door is left wide open. This session will dive into modern auth techniques with a little history from RBAC to ABAC and how to implement passwordless access to your most critical resources. 
Speakers
avatar for Chase Doelling

Chase Doelling

Principal Strategist, JumpCloud
Chase is a Principal Strategist at JumpCloud, designing authentication strategies and evangelizing customer solutions. He has been working in venture-backed startups across identity, security, integration, and DevOps for the last decade. Chase is a frequent speaker on topics from... Read More →
Wednesday November 13, 2024 10:00am - 10:25am PST
VIRTUAL CloudX -- Main Stage
  CloudX: Cloud Architecture & Infrastructure, Cloud Security

11:30am PST

[Virtual] PRO SESSION (CloudX): Harnessing Sandboxing for Secure Application Deployment
Wednesday November 13, 2024 11:30am - 11:55am PST
VIRTUAL CloudX -- Stage 1
Ajay Kidave, Clace, Founder

Sandboxing allows for secure software development and deployment. Running code in a sandbox allows installing and running applications while controlling what the applications can do. Sandboxing allows administrators to deploy an application and specify what fine grained operations it can perform. We introduce an open-source project built in go that implements sandboxing features to allow applications to be developed and deployed easily and securely. 
Speakers
avatar for Ajay Kidave

Ajay Kidave

Founder, Clace
Ajay Kidave is the Founder of Clace, an open source project which is using sandboxing to allow the secure development and deployment of internal applications. Previously, Ajay was the Chief Architect at SnapLogic, an enterprise data and application integration service. Before that... Read More →
Wednesday November 13, 2024 11:30am - 11:55am PST
VIRTUAL CloudX -- Stage 1
  CloudX: Cloud Architecture & Infrastructure, Deployment Strategies

1:30pm PST

[Virtual] PRO SESSION (CloudX): Simplifying Multi-Cloud Security and Networking using an AI-Powered Approach
Wednesday November 13, 2024 1:30pm - 1:55pm PST
VIRTUAL CloudX -- Stage 1
Bhavin Desai, Google, Cross-Cloud Network Product Lead

Organizations increasingly adopt multi-cloud strategies to enhance agility and avoid vendor lock-in. However, this complexity creates challenges in networking, security posture management, and application development. This abstract highlights the potential of service-centric networking to streamline secure connectivity across hybrid and multi-cloud environments. It also explores AI-powered network security capabilities, including zero-trust architecture, next-generation firewalls, secure web proxies, and data loss prevention. By integrating these solutions, organizations can proactively defend their cloud networks, protect workloads, secure data, and ensure user security, ultimately accelerating distributed application development while maintaining a robust security posture. 
Speakers
avatar for Bhavin Desai

Bhavin Desai

Cross-Cloud Network Product Lead, Google
Highly accomplished cloud infrastructure and cybersecurity professional with a strong background in product management, technical solutions architecture, and cloud engineering. Proven expertise with 11+ years of experience in leading strategic initiatives, designing scalable solutions... Read More →
Wednesday November 13, 2024 1:30pm - 1:55pm PST
VIRTUAL CloudX -- Stage 1
  CloudX: Cloud Architecture & Infrastructure, Hybrid & Multi-Cloud

2:30pm PST

[Virtual] KEYNOTE (CLOUDX): Sicura -- Automating Compliance for Cloud Image Building
Wednesday November 13, 2024 2:30pm - 2:55pm PST
VIRTUAL CloudX -- Main Stage
Kendall Moore, Sicura, CTO

There are too many possibilities for base images in cloud environments and not enough time to validate which ones fulfill all of my requirements. Worse yet, I know that I have policies set by my security team that my infrastructure will be beholden to. So now what? I built an open source policy engine and image generator to implement directly into my build pipelines. I can start with any base image, apply my security policies that are verified by my security team, and now have a baseline that I can rapidly scale my infrastructure from. 
Speakers
avatar for Kendall Moore

Kendall Moore

CTO, Sicura
Dedicated to optimization and designing effective workflows for continuous integration and continuous delivery, Kendall understands the melding of operations and development to quickly deliver code to customers. Has experience with the Cloud and monitoring processes as well as DevOps... Read More →
Wednesday November 13, 2024 2:30pm - 2:55pm PST
VIRTUAL CloudX -- Main Stage
  5. KEYNOTES & FEATURED, CloudX
 
Thursday, November 14
 

10:30am PST

[Virtual] OPEN SESSION (CloudX):: Managing Data Security in Multi-Cloud Environments
Thursday November 14, 2024 10:30am - 10:55am PST
VIRTUAL API World -- Main Stage
Kevin Hunt, Cloud Storage Security, CTO

Ransomware attacks, breaches, data exfiltration, and insider disclosures are occurring every day around the world. Legacy thinking on providing data security has been focused on the application and platform or operating system. This leads to a somewhat chaotic data security landscape that is likely to have holes and missed handoffs. Modern enterprise systems use and store data using the most effective platform that delivers the convenience and performance required. This open-ended approach to data handling should be addressed through an equally open and flexible approach to securing data regardless of where it is stored or how and when it is used.
Businesses should take a holistic view of their data security to ensure that unintended gaps and inconsistencies that may open the door for threat propagation are detected and mitigated. Enacting multiple layers of data management practices ensures that both stored and inflight data is clean.
This keynote will draw on the Data Security Maturity Model (DSMM) to illustrate the challenges developers and users face in the open landscape of current application deployments. Placing a strong focus on a layered framework that provides consistent and robust security for data as it is used, this approach incorporates seamless malware scanning and detection that provides a constant watch for irregularities and threats.
Speakers
avatar for Kevin Hunt

Kevin Hunt

Chief Technology Officer, Cloud Storage Security (CSS)
As chief technology officer for CSS, Kevin leads the company’s product development, engineering, and customer experience groups in delivering unparalleled cloud storage security solutions that address current and future customer storage security needs. Kevin brings CSS a wealth... Read More →
Thursday November 14, 2024 10:30am - 10:55am PST
VIRTUAL API World -- Main Stage
  OPEN SESSIONS, CloudX

3:00pm PST

[Virtual] KEYNOTE (CLOUDX): Trend Micro -- Utilizing a New Threat Model for Software Supply Chain in Cloud-native Systems
Thursday November 14, 2024 3:00pm - 3:25pm PST
VIRTUAL CloudX -- Main Stage
Mike Milner, Trend Micro, VP Cloud Technology

As cloud native environments become more secure, attackers are shifting their focus to infiltrate the software supply chain. Securing the software supply chain starts at the beginning of the development process and continues throughout the application’s development lifecycle, but the complexity means that it is easy to miss links in this chain.

This session will construct a threat model that includes everything from the developer work stations, the code and open source libraries that make up an application, to the entire pipeline of building and deploying an app and the teams that maintain it.

Attendees of this session will:
• Understand the steps needed to manage and ensure the security of a broader software supply chain considering quickly evolving tech innovations.
• Learn how to determine the best tools for tracking the software development lifecycle in cloud-native settings.
• Discover how new generative AI tools can help automate some of the monotonous tasks such as fixing or updating older or broken code.
Speakers
avatar for Mike Milner

Mike Milner

VP Cloud Technology, Trend Micro
Mike Milner is the VP Cloud Technology at Trend Micro. Between fighting cybercrime for the Canadian government and working for security agencies overseas, Mike has developed a deep understanding of the global security landscape and how the underground economy dictates hacks and drives... Read More →
Thursday November 14, 2024 3:00pm - 3:25pm PST
VIRTUAL CloudX -- Main Stage
  5. KEYNOTES & FEATURED, CloudX
 
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Monday, November 4
Tuesday, November 5
Wednesday, November 6
Thursday, November 7
Tuesday, November 12
Wednesday, November 13
Thursday, November 14
API World -- Expo Discovery Stage
API World -- Main Stage
API World -- OPEN Workshop Stage
API World -- Workshop Stage A
API World -- Workshop Stage B
API World -- Workshop Stage C
CloudX -- Expo Innovation Stage
CloudX -- Main Stage
CloudX -- Stage 1
Dev Innovation Summit -- Main Stage
Expo Hall
RingCentral Events
Santa Clara Convention Center
Santa Clara Convention Center - Lobby
Santa Clara Hyatt Regency Lobby
VIRTUAL API World -- Expo Discovery Stage
VIRTUAL API World -- Main Stage
VIRTUAL API World -- OPEN Workshop Stage
VIRTUAL API World -- Workshop Stage A
VIRTUAL API World -- Workshop Stage B
VIRTUAL API World -- Workshop Stage C
VIRTUAL CloudX -- Expo Innovation Stage
VIRTUAL CloudX -- Main Stage
VIRTUAL CloudX -- Stage 1
VIRTUAL Dev Innovation Summit -- Main Stage
Virtual Expo Hall
  • 1. Badge Pick-up & Registration
  • 2. Experiences & Official Events
  • 3. Expo Hours
  • 4. Hackathon
  • 5. KEYNOTES & FEATURED
  • API World: API Innovation
  • API World: API Strategy
  • API World: Lifecycle
  • API World: Microservices World
  • CloudX: Cloud Architecture & Infrastructure
  • CloudX: Cloud-Native Development
  • CloudX: Cloud Strategy Conference
  • CloudX: DevOps Summit
  • Dev Innovation Summit
  • OPEN SESSIONS
  • Talk Type
  • OPEN Session
  • PRO Session
  • PRO Workshop
  • Track or Conference
  • AI & ML (CloudX)
  • API Case Studies & Success Stories (API World)
  • API Design / Architecture (API World)
  • API Leadership Summit (API World)
  • API Ops & Scalability & Usability (DX) & Testing (API World)
  • API Program Management (API World)
  • API Security / Compliance (API World)
  • API World
  • API World: API Innovation
  • API World: API Lifecycle
  • API World: API Strategy
  • API World: Microservices World
  • API-First Development (API World)
  • APIs (Dev Innovation)
  • Automated Testing & Monitoring & Reporting (CloudX)
  • CI/CD (CloudX)
  • CI/CD / Deployment (API World)
  • Cloud Development Technologies (CloudX)
  • Cloud Development Technologies (Dev Innovation)
  • Cloud Infrastructure (CloudX)
  • Cloud Innovation (AI & Edge & etc) (CloudX)
  • Cloud Security (CloudX)
  • Cloud Talent & Skills (CloudX)
  • CloudX
  • CloudX: Cloud Architecture & Infrastructure
  • CloudX: Cloud Strategy Conference
  • CloudX: Cloud-Native Development
  • CloudX: DevOps Summit
  • Containers & Kubernetes (CloudX)
  • Deployment Strategies (CloudX)
  • Dev Innovation (CloudX)
  • Dev Innovation Summit
  • Developer Tools (Dev Innovation)
  • DevSecOps (CloudX)
  • Digital Acceleration (CloudX)
  • Emerging APIs: AI & IoT & Blockchain & Web3 & XR (API World)
  • Future of Cloud-Native Computing (CloudX)
  • Hybrid & Multi-Cloud (CloudX)
  • Hybrid APIs & Low Code APIs (API World)
  • Industries: Open Banking & Healthcare & Retail (API World)
  • Infrastructure-as-Code (CloudX)
  • Integration Management (API World)
  • Microservices Design & Architecture (API World)
  • Microservices Design (CloudX)
  • Microservices Management (CloudX)
  • Observability (CloudX)
  • OPEN Session
  • Platform Engineering (API World)
  • Programming Languages (Dev Innovation)
  • Roundtables
  • Service Mesh & Containers & Kubernetes (API World)
  • Sponsor Spotlight
  • Virtual
  • In-Person/Virtual
  • In Person
  • Virtual
  • Virtual Exclusive