Teri Radichel has helped 1000's of companies with cloud security through consulting, writing, research, and training. She has multiple cybersecurity certifications, including the GSE. Teri is the founding organizer of the Seattle AWS Architects and Engineers Meetup which has nearly 3,000 members. She was on the original team that helped Capital One move production workloads to AWS. At another company, Teri led a team of 30 people in two countries and architected a SAAS IOT solution for firewalls connecting to the cloud. Her team implemented a secure CI/CD pipeline based on her white paper on event-driven security. She then moved into security research, writing articles for publications such as Light Reading and Infosecurity Magazine, and reverse engineering malware. She also helped with technical due diligence for cloud acquisitions. She received the SANS Difference Makers Award for cloud security innovation and is an AWS Hero.
As the CEO of 2nd Sight Lab, she has helped companies from startups to Fortune 100 with cloud security assessments, pentests, audits, and training. Teri presents on cloud security at conferences such as RSA, AWS re:Invent, AWS re:Inforce, IANS Security Forums, Countermeasure, ServerlessDays, and BSides. She writes a blog called Cloud Security and is working on a book, Cybersecurity for Executives. You can follow her on Twitter @teriradichel.
How might an attacker go after your serverless architecture, and what can you do to defend it? This presentation covers real-world attacks in cloud and non-cloud environments that can affect serverless architectures. Learn about some successful real-world attacks and vulnerabilities discovered while penetration testing serverless environments. You’ll learn how and why cybersecurity fundamentals still apply. Understand what security responsibilities you are giving to the cloud provider in a serverless architecture and why this matters. Also, learn some of the top things you can do to defend your serverless infrastructure and applications.