Open Source in Finance Forum New York 2024

Cloud native technologies bring a significant change to the technological landscape, offering unprecedented levels of agility and scalability to modernise IT infrastructure and systems. However, they may potentially introduce substantial added complexity, widen the skills gap, and enlarge the attack surface. Unmanaged adoption will inevitably result in increased risk for any organisation. Security domains and disciplines like open source ingestion, AI/ML secops, threat modeling, security architecture, engineering and incident response need to adapt to the cloud native ecosystem to remain effective. We'll present the most common pain points and pitfalls, to then provide an overview of available countermeasures based on 200+ combined years of cloud native expertise.

Key takeaways: Attendees will be presented with practical techniques to improve common security disciplines (threat modeling, security architecture, engineering, and incident response) for modern cloud-native systems. They will leave with an understanding of what enhancements are required to maximise their usability and effectiveness.

Attendees will be presented with (i) an overview of challenges associated with cloud native technologies, (ii) a focus on risks and skill gaps, (iii) practical techniques to improve common security disciplines (threat modelling, security architecture, engineering, and incident response) for modern cloud native systems, (iv) an understanding of what enhancements are required to maximise their usability and effectiveness, (iv) a reusable methodology for de-risking cloud native technologies adoption.