Cloud Security Alliance UK Chapter

The Cloud Security Alliance UK chapter is presenting a series of sessions to provide CISO's, Cloud Security Architects, DevSecOps and SOC teams a breadcrumb roadmap of how to apply the recently published (late 2019)  MITRE ATT&CK for the Cloud  and also take influence from Microsoft’s recent Threat matrix on Kubernetes (K8).   We are seeking feedback or additional items you would like us to cover.  The proposed series of sessions will cover:   Session 1: [ Author/Presenter: Stephen Owen] 90 mins planned online 24th June CSA session on "What is MITRE ATT&CK and Cloud" and what benefits it brings to each of the stakeholders  What is  MITRE ATT&CK Enterprise  and  Cloud Where to start How to take advantages of the current  MITRE ATT&CK Cloud  and combining with Microsoft’s K8 Matrix;  Suggested practices to follow targeted to each of the below roles: Cloud Security Architects DevSecOps SOC Team  Cloud/CISO Lea...

The UK Cloud Security Alliance chapter asked Stephen Owen, UK Board Director, his opinion on "Going to the Cloud". This video blog is particularly relevant in the current climate while organisations review or start their digital transformation or disruption journeys. In this short video blog ( https://youtu.be/KzXLlJUTYRo ), Stephen describes some of the cornerstones to address some of the fundamentals using the "Cloud Centre of Excellence  Enablement" (CCoE). CCoE should not be seen as a compliance function but an agile process to move fast and save cost. Over the last few years, Stephen has seen a broad spectrum of both several successful and failed attempts, from start-ups to international companies going to the Cloud. Often it’s a combination of several issues that result in failure or late delivery; Missing skill sets Starting too big Lack of experienced Cloud leadership Project Managers adopting Waterfall while DevOps adopt agile Security Architects using on-p...

The CSA UK Chapter made the decision to suspend all posting and promoting of our webinar this week in support of Blackout Tuesday.  We are choosing to postpone this event in honour of #blackouttuesday freeing up the time usually dedicated to events and social media for people to educate themselves on the Black Lives Matter movement, fighting against injustice and systematic racism. The CSA UK Board felt that the death of George Floyd and the subsequent inadequate response by the Police and the US government demanded a response. You may ask why a UK organisation with no connection to the matter at hand chooses to act in this way?  We stand in solidarity with our fellow right-minded citizens of all countries; and t he words of  Edmund Burke [1729-97] (in a letter addressed to Thomas Mercer) probably say it better than we could;  “The only thing necessary for the triumph of evil is for good men to do nothing.” The CSA UK Chap...