This presentation will show how insight was achieved on a large scale into the security posture of a multi-cloud environment spread across multiple cloud service providers by using cloud provider APIs to pull security configuration data, normalize the data to a cloud-independent format, index it, analyze it, and detect security issues as well as violations of CIS benchmarks.

RSA® Conference, the world’s leading information security conferences and expositions, concluded its 30th annual event, which took place as a fully virtual experience this week. This year’s theme was Resilience, and in honor of all that the cybersecurity industry has accomplished over the past three decades, offered a must-attend celebration of thought leadership and education.


More than 20,000 people registered to view 449 sessions including, keynotes, track sessions, interactive programs, tutorials, seminars, and many special digital-first programs that focused on best practices and innovation. The content covered many of the industry’s most pressing topics, including privacy, machine learning and artificial intelligence, analytics, anti-fraud, policy and government, and risk management and governance.

Multi-Cloud Security Monitoring and CIS Benchmarks Evaluation at Scale

Conference: RSA Conference 2021

Abstract

Post a comment

Related work

Terraform Top 10

Tackling Privilege Escalation with Offense and Defense

Cluster Grey Zone: Risks in Managed Cluster Middleware

Sneak into Your Room: Security Holes in the Integration and Management of Messaging Protocols on Commercial IoT Clouds