Name
Securing Your Apps in a Cloud-Native World
Frans van Buul
Description

Securing Your Apps in a Cloud-Native World
Many organizations are in the midst of a cloud transformation. What impact does this have on the security aspects of applications? It depends. In the simplest form of “going to the cloud,” merely putting existing workloads on cloud infrastructure (also called “lift-and-shift”) has minimal impact. However, most organizations choose (at least to some extent) a more ambitious approach, transforming applications to optimally benefit from the opportunities cloud has to offer: becoming cloud-native.

These cloud-native applications do have security aspects that are not present in typical on-premises apps. Think about the use of specific cloud APIs, using infrastructure-as-code frameworks to facilitate deployment, dealing with secret credentials specific to the cloud, using cloud-based CI/CD systems, etc. In this session, Frans van Buul will review these aspects and highlight how static analysis technology can help in assessing the security of these modern apps.