3 years ago

Category: Software, Security, Data, Microsoft, Kubernetes, Docker

Many cloud native security problems are the same old security problems we’ve always failed to handle properly, as Matthew Chiodi, Palo Alto Networks’ chief security officer for the public cloud, recently pointed out.

And as more workloads move to the cloud and adopt cloud native development patterns, a new approach to security will be required over the long term.

Morello is a prominent expert in cloud native security, a co-author of the U.S. National Institute of Standards and Technology’s (NIST) guide to container security and former chief technology officer of cloud native security startup Twistlock, which was acquired by Palo Alto Networks in 2019.

These include: Put it all together, and as Morello wisely observed, “You can’t have security as something that comes as an afterthought.

The real unmatched challenge right now,” Morello concluded, “is how do you create a level of learning that’s in the software that you use to protect those environments, so that you’re bothering the human operators as little as possible and only for things that really require that human intervention.”