A good insight, I have just subscribed to your podcast 👍 The major issues I see is that many Businesses go through there "Digital Transformation" - which basically means they perform a "Lift and Shift" approach from their Data Centres, straight into the Cloud, and then say they are proudly "we are in the Cloud" and everyone pats themselves on back. They have not embraced any of the benefits of the Cloud and basically all they have done is moved from one physical Data Centre, to another Virtual Data Centre. And this is where it gets tricky with CSPM as you loose a lot of those benefits of Cloud.
Great overview Ashish - CSPM is my favorite topic and this space is evolving soooo fast. I'd love to hear more about CSPM optimization - what do you think are the most important usecases to focus on when implementing CSPM?
This is a great question. Short answer is context of alerts coming in should be used as an indicator where the initial focus should be. If there is something which is HIGH Risk, focus on that problem first. We can do a detailed view on this because this is definitely a question we are being asked quite often
Great story, thanks) may be few things to add - this 4th generation a bit slow if compare to previous. It's easy and fast (you could do it like every 30 mins) to query API on some configuration state for legacy cspm. But with 4th gen it requires pretty much time to rebuild dependencies between cloud entities to reveal context and raise alert and it could take hours. Also, what do you think about threats/behaviour based detection? It's not CSPM class of the solution but still necessity.
That's a good point @vadym! There is a definitely a risk of time elapsed between finding a threat in near real time vs getting a contextualised answer for a threat. In regards to the Threat/behaviour based detection, I can see the value in it and some companies have started pulling that into the CSPM space too but IMO we still land on the alert with sometime no context. Out of curiosity have you seen any company do threat/behaviour well/
There are quite a few, i would say anyone who calls themselves as CNAPP or developer first security are good ones to consider and there are a lot of them to list out all of them. there is a 5th gen coming up which we need to make a video on soon.
Checkout our FREE & Paid Cloud Security Training at www.cloudsecuritybootcamp.com
A good insight, I have just subscribed to your podcast 👍
The major issues I see is that many Businesses go through there "Digital Transformation" - which basically means they perform a "Lift and Shift" approach from their Data Centres, straight into the Cloud, and then say they are proudly "we are in the Cloud" and everyone pats themselves on back. They have not embraced any of the benefits of the Cloud and basically all they have done is moved from one physical Data Centre, to another Virtual Data Centre.
And this is where it gets tricky with CSPM as you loose a lot of those benefits of Cloud.
This one was a great episode.
Thank you Jay!
Great articulation of the recent past from a CSPM perspective Ashish - interested to see how the space evolves across the next 2-3 years
We are keen to keep an eye on this space too Paul!
Great overview Ashish - CSPM is my favorite topic and this space is evolving soooo fast. I'd love to hear more about CSPM optimization - what do you think are the most important usecases to focus on when implementing CSPM?
This is a great question. Short answer is context of alerts coming in should be used as an indicator where the initial focus should be. If there is something which is HIGH Risk, focus on that problem first. We can do a detailed view on this because this is definitely a question we are being asked quite often
Great story, thanks) may be few things to add - this 4th generation a bit slow if compare to previous. It's easy and fast (you could do it like every 30 mins) to query API on some configuration state for legacy cspm. But with 4th gen it requires pretty much time to rebuild dependencies between cloud entities to reveal context and raise alert and it could take hours.
Also, what do you think about threats/behaviour based detection? It's not CSPM class of the solution but still necessity.
That's a good point @vadym! There is a definitely a risk of time elapsed between finding a threat in near real time vs getting a contextualised answer for a threat.
In regards to the Threat/behaviour based detection, I can see the value in it and some companies have started pulling that into the CSPM space too but IMO we still land on the alert with sometime no context. Out of curiosity have you seen any company do threat/behaviour well/
helpful, thank u
Glad you found it helpful. Is there a Cloud Security Topic that we can cover for you?
Great overview of CSPMs Ashish!
Thank you Deborah!
Thank you for this overview, can you name a few 4th gen CSPMs that come to your mind?
There are quite a few, i would say anyone who calls themselves as CNAPP or developer first security are good ones to consider and there are a lot of them to list out all of them. there is a 5th gen coming up which we need to make a video on soon.