Cloud Security Essential: Make Penetration Testing Constant

Cloud Security Essential: Make Penetration Testing Constant
As more organizations move their operations into the cloud, they need to review how they're securing their data, preferably before moving a single piece of information, says Outpost24's Bob Egner.<br />"What we find is that many organizations are investing in new technology faster than they're thinking about the security implications," he says.<br />At the...

As more organizations move their operations into the cloud, they need to review how they're securing their data, preferably before moving a single piece of information, says Outpost24's Bob Egner.

"What we find is that many organizations are investing in new technology faster than they're thinking about the security implications," he says.

At the same time, the top application security threats facing organizations, as documented by the OWASP Top 10, haven't changed, he notes. Clearly, something needs to change.

In a video interview at the recent Infosecurity Europe conference in London, Egner discusses:

  • The business case for continuous penetration testing;
  • The prevalence of security spending only happening after an organization suffers a breach;
  • The rise of secure DevOps, aka SecDevOps, and the security challenges that accompany agile development.

Egner is head of products at Outpost24, and also serves on the board of directors at Wiraya Solutions in Sweden. Previously, he served as vice president of product management and marketing at EPiServer, president of the U.S. operations and vice president of global marketing at Egress Software Technologies and vice president of product management and business development at Check Point, among other roles.

Source: www.databreachtoday.com