Spiceworld: Pen Testing Your Cloud to Prevent Infrastructure Attacks

In this session, Josh Stella, Fugue Co-Founder and CEO Josh Stella will walk through what pen testing your cloud security posture looks like, how to approach it in house, and how to evaluate vendors to ensure they understand cloud misconfiguration and how to exploit it. This session will provide security professionals with a framework for approaching pen testing cloud environments and feature real-world misconfiguration exploits and actionable information you can use to begin incorporating your cloud attack surface in your pen testing plan.

DevOps Days Boston-Blowing up Serverless Security and How to Avoid it

Josh Stella, Fugue Co-Founder and CEO will dig into the role IAM plays in serverless security, how IAM misconfigurations put data at risk, and why these mistakes are so easy to make and common in enterprise cloud environments.

Spiceworld: Blowing up Serverless Security and How to Avoid It

In this session, Josh Stella, Fugue Co-Founder and CEO will survey what cloud security looks like for serverless environments and go deep on the biggest and most important attack surface when it comes to serverless: Identity and Access Management (IAM). Josh will dig into the role IAM plays with serverless security, how IAM misconfigurations put data at risk, and why these mistakes are so easy to make and common in enterprise cloud environments. This session will cover: -The IAM attack surface with serverless cloud environments -The strategies hackers use to exploit IAM misconfigurations -How to spot these mistakes and eliminate them