Skip to content

September 14, 2021 11:00AM Pacific/2:00PM Eastern

In this Cloud Security Masterclass, Josh Stella (CEO of Fugue) and Brian Fox (CTO of Sonatype) will dig into what engineering and security teams need to know about cloud misconfiguration risk and how to “Shift Left” with IaC security checks. 

You’ll walk away from this session with a clear understanding of: 

  • Cloud misconfiguration risk and commonly overlooked issues that often get deployed to production
  • How compliance standards like SOC-2, NIST 800-53, and HIPAA apply to infrastructure as code
  • Effective ways to empower cloud developers to get IaC secure early, and build IaC checks in CI/CD 

Cloud misconfiguration is the #1 cause of data breaches—and it’s entirely preventable. 

With infrastructure as code (IaC) tools like Terraform, it’s now possible to eliminate cloud misconfiguration and compliance issues prior to deployment, keeping security issues from surfacing in production.

With the right approach to securing IaC, teams can focus on quality from the start, and achieve a faster time to market for cloud applications. Reduce your cloud risk and invest more engineering resources in building rather than chasing and fixing issues in production. 

Register for this Masterclass

Save Your Seat

Your privacy is important to us and your information 
will be kept confidential.

May 19, 2021 1:30PM-2:30PM Eastern

Cloud misconfiguration is the #1 cause of data breaches—and it’s entirely preventable. 

With infrastructure as code (IaC) tools like Terraform, it’s now possible to eliminate cloud misconfiguration and compliance issues prior to deployment, keeping security issues from surfacing in production.

With the right approach to securing IaC, teams can focus on quality from the start, and achieve a faster time to market for cloud applications. Reduce your cloud risk and invest more engineering resources in building rather than chasing and fixing issues in production. 

In this Cloud Security Masterclass, Josh Stella (CEO of Fugue) and Brian Fox (CTO of Sonatype) will dig into what engineering and security teams need to know about cloud misconfiguration risk and how to “Shif Left” with IaC security checks. 

You’ll walk away from this session with a clear understanding of: 

  • Cloud misconfiguration risk and commonly overlooked issues that often get deployed to production
  • How compliance standards like SOC-2, NIST 800-53, and HIPAA apply to infrastructure as code
  • Effective ways to empower cloud developers to get IaC secure early, and build IaC checks in CI/CD 

 

Register for this Masterclass

 

 

Who Should Attend? 

  • Cloud engineers and application teams
  • Security teams
  • Cloud architects 
  • Site Reliability Engineers (SRE) 

This session will feature hands-on demonstrations using Terraform and Amazon Web Services (AWS), but the concepts are relevant for any cloud engineering and security teams using infrastructure as code and public cloud services, including Microsoft Azure and Google Cloud Platform. 

Speakers

Josh Stella

Co-founder and CEO of Fugue

Josh Stella is co-founder, CTO, and CEO of Fugue, the company transforming cloud security to help teams move faster and stay secure. Through Fugue's masterclasses, Josh educates cloud and security professionals about cloud misconfiguration exploits and how to keep cloud infrastructure secure from attackers—often by demonstrating exploits in real time as a white hat hacker. 

Previously, Josh was a Principal Solutions Architect at Amazon Web Services (AWS), where he supported customers in the area of national security. Josh also served as CTO for a technology startup and in numerous other IT leadership and technical roles over the past 25 years. 

Brian Fox

Co-founder and CTO of Sonatype

Sonatype Co-founder and CTO, Brian Fox is a member of the Apache Software Foundation and former Chair of the Apache Maven project. As a direct contributor to the Maven ecosystem, including the maven-dependency-plugin and maven-enforcer-plugin, he has over 20 years of experience driving the vision behind, as well as developing and leading the development of software for organizations ranging from startups to large enterprises. Brian is a frequent speaker at national and regional events including Java User Groups and other development related conferences.