In the early cloud days, cybersecurity had been a top inhibitor to its adoption, especially in highly regulated industries such as finance & insurance. Today, improved security has become a top driver of cloud computing and we are facing new challenges created by the “Cloud first” paradigm: Complexitiy. Multi-cloud, multi-platform, hybrid-native. Managing infrastructure entitlements across these platforms is becoming a growing concern with the potential to even become virulent if not addressed appropriately. In this talk, Martin Kuppinger will describe why Cloud Infrastructure Entitlement Management (CIEM), or, better, DREAM (Dynamic Resource Entitlement & Access Management), for the entire complexity of multi-cloud, multi-hybrid, environments, should play a crucial role in your Cyber strategy, how to embed it into an overall-perspective for the coming years and how to derive a practical roadmap from that strategy.
A practical approach to cyber security architectures: In a hybrid ecosystem we have not only to find a suitable security model for IT but also for OT like in production environments. And after all cloud services are adding another dimension of complexity. We will take a short look at the security basics, compare some outdated, updated and up-to-date security models finding suitable models for IT-security, OT-security and cloud-security. Finally we will put it all together in combined scenarios. This presentation will focus on practical security architecture rather than on formal compliance.