Are you ready for a cloud pen test?
What exactly is a cloud pen test? This presentation will talk about different aspects of cloud security that can be addressed in a cloud penetration test. Do you know your scope? Do you want an internal scan? An external scan? Exploitation? Exfiltration? What about devices and software accessing your cloud? What about social engineering and phishing? And - are you ready for a pen test? Maybe some other options would be more effective in improving cloud security in your organization.
Speakers Bio: Teri Radichel was on the original team that helped Capital One, the first major US Bank to use AWS, move production workloads to the cloud. She then architected a SAAS IOT solution for firewalls connecting to the cloud for a security vendor. She also led a cloud team of 30 people and delivered a secure CI/CD pipeline based on her white paper, Balancing Security and Innovation with Event Driven Automation. Now she focuses on training, penetration testing, and cloud security assessments. She also enjoys security research and writing. You can find her articles in publications like Dark Reading, Infosecurity Magazine and her cloud security blog. Teri has presented on cloud security at conferences like RSA, AWS re:Invent, Countermeasure IT, SANS Networking, SANS Cloud Summit, and BSides. She is an IANS Faculty member and received the 2017 SANS Differences Makers Award. She is an AWS Hero and runs the Seattle AWS Architects and Engineers meetup which has almost 3,000 members. Teri was on the SANS cloud security curriculum advisory board and taught a cloud security class for SANS Institute in 2018. She now teaches a class she wrote through her company, 2nd Sight Lab. Cybersecurity certifications: GSEC, GCIH, GCIA, GCPM, GCCC, GREM, GPEN, GXPN