To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Search a title or topic

Over 20 million podcasts, powered by 

Player FM logo
Artwork

Podcasting Education Passwork
Content provided by Passwork. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Passwork or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Passwork Cybersecurity Webinars « »
EP. 03 - Cloud Security: Shared responsibility or shared confusion

51:54
 
Play
Playing
Share
 

M4AEpisode home
Manage episode 502440403 series 3681654
Content provided by Passwork. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Passwork or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this engaging Passwork Cybersecurity Webinar, we break down the realities of cloud security: shared responsibility or shared confusion? Join host Terpal and special guest David Gordon, cybersecurity lecturer and former Google cloud specialist, for a deep dive into the challenges, pitfalls, and best practices of securing your data in the cloud.

David shares his journey from tech sales to the frontlines of cloud and cybersecurity, offering candid insights and practical strategies every organization can use. The discussion covers real-world breaches, contract loopholes, compliance headaches, and the human factor—all through the lens of the shared responsibility model.

Key Topics and Time Codes:

  • 00:00 – Introduction: Meet David Gordon and the path from tech sales to cloud security
  • 03:24 – Shared responsibility explained: Who secures what in the cloud?
  • 05:51 – Security gaps in practice: S3 bucket misconfigurations, IAM mistakes, and lessons learned
  • 09:09 – Contracts vs. reality: What CISOs must look for in the fine print
  • 12:21 – Vendor transparency: How to verify your provider’s security controls and incident response
  • 14:44 – Misconfiguration mayhem: Who owns ongoing monitoring and remediation?
  • 18:12 – Shadow IT: The risks of decentralized cloud usage and how to address them
  • 21:08 – Incident response: Challenges and solutions when breaches happen
  • 24:16 – IAM risks: How to avoid over-provisioning and enforce least privilege
  • 27:11 – AI in cloud security: Does responsibility shift with automation?
  • 30:44 – Data sovereignty & privacy laws: Navigating compliance across jurisdictions
  • 33:52 – Multi-cloud confusion: How to ensure consistent security and avoid chaos
  • 37:05 – Ongoing assurance: Best practices for verifying your provider’s security posture
  • 39:32 – Is shared responsibility just marketing? The real effectiveness of the model
  • 42:33 – Who owns the risk? Legal realities and operational truths
  • 45:50 – The human factor: Addressing people as the weakest link—at both provider and client levels

Packed with actionable advice and expert perspectives, this episode is essential for CISOs, cloud architects, IT leaders, and anyone navigating the evolving landscape of cloud security.

Don’t forget to subscribe for more insightful discussions on cybersecurity, risk management, and digital trust!

  continue reading

4 episodes

#Podcasting Education #Passwork
Artwork

EP. 03 - Cloud Security: Shared responsibility or shared confusion

Passwork Cybersecurity Webinars

published

Play Playing
iconShare
 
M4AEpisode home
Manage episode 502440403 series 3681654
Content provided by Passwork. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Passwork or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this engaging Passwork Cybersecurity Webinar, we break down the realities of cloud security: shared responsibility or shared confusion? Join host Terpal and special guest David Gordon, cybersecurity lecturer and former Google cloud specialist, for a deep dive into the challenges, pitfalls, and best practices of securing your data in the cloud.

David shares his journey from tech sales to the frontlines of cloud and cybersecurity, offering candid insights and practical strategies every organization can use. The discussion covers real-world breaches, contract loopholes, compliance headaches, and the human factor—all through the lens of the shared responsibility model.

Key Topics and Time Codes:

  • 00:00 – Introduction: Meet David Gordon and the path from tech sales to cloud security
  • 03:24 – Shared responsibility explained: Who secures what in the cloud?
  • 05:51 – Security gaps in practice: S3 bucket misconfigurations, IAM mistakes, and lessons learned
  • 09:09 – Contracts vs. reality: What CISOs must look for in the fine print
  • 12:21 – Vendor transparency: How to verify your provider’s security controls and incident response
  • 14:44 – Misconfiguration mayhem: Who owns ongoing monitoring and remediation?
  • 18:12 – Shadow IT: The risks of decentralized cloud usage and how to address them
  • 21:08 – Incident response: Challenges and solutions when breaches happen
  • 24:16 – IAM risks: How to avoid over-provisioning and enforce least privilege
  • 27:11 – AI in cloud security: Does responsibility shift with automation?
  • 30:44 – Data sovereignty & privacy laws: Navigating compliance across jurisdictions
  • 33:52 – Multi-cloud confusion: How to ensure consistent security and avoid chaos
  • 37:05 – Ongoing assurance: Best practices for verifying your provider’s security posture
  • 39:32 – Is shared responsibility just marketing? The real effectiveness of the model
  • 42:33 – Who owns the risk? Legal realities and operational truths
  • 45:50 – The human factor: Addressing people as the weakest link—at both provider and client levels

Packed with actionable advice and expert perspectives, this episode is essential for CISOs, cloud architects, IT leaders, and anyone navigating the evolving landscape of cloud security.

Don’t forget to subscribe for more insightful discussions on cybersecurity, risk management, and digital trust!

  continue reading

4 episodes

#Podcasting Education #Passwork

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play
icon
Help/FAQ | Advertise with Us
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play