Cybersecurity has becomes an increasingly bigger issue due to the acceleration of digital transformation during COVID-19, and more regulations are being put in place across the world to protect consumers.

Companies are scrambling to figure out how to meet the pressing demands in this area, and developers and security teams alike are being tasked to create a culture of development, security and operations (known as DevSecOps) for built-in security. To make this easier, Trend Micro Inc., a cybersecurity company, has partnered with Amazon Web Services Inc. to bring automated, flexible security services with Cloud One.

Mike Milner (pictured, left), head of product management at Trend Micro, and Danielle Greshock (pictured, right), head of partner solutions architecture and worldwide independent software vendor at AWS, spoke to Lisa Martin, host of theCUBE, SiliconANGLE Media’s livestreaming studio, during AWS re:Invent. They discussed cybersecurity, a culture of DevSecOps, and how Cloud One fits into this rapidly changing space. (* Disclosure below.)

[Editor’s note: The following content has been condensed for clarity.]

With security buyers, what’s going on there? What are the conversations you’re having with customers?

Milner: Historically, [security] has been … top-down decisions — a CSO or executive is making security buying decisions. Increasingly, customers want to actually try things out. They want to experience the value, see how it works in their environments. And this could be coming from different business units, different parts of the organization. So we’ve really been focusing on adapting our products, our capability and how we address customers to really reach these people who are making these decisions.

Greshock: More and more developers are actually part of that process as well, because they’re being tasked with, ‘If you’re going to build it, you also have to operate it, and you also have to secure it.’

As a former developer, Danielle, talk to me about some of the customer conversations and how you are helping developers become comfortable with security responsibility in DevSecOps.

Greshock: It’s back to integrating [security] into their normal process and to the DevOps process — to just have that be an extra step in there where they can see that it’s easy. Being easy is key, and then they can just be able to roll that out with everything that they’re doing. They’ve already … made the mind shift to test their work. [Security is] just one other practice that they start doing.

About Cloud One, is this a joint solution that’s just built on AWS? Help me understand it.

Milner: Cloud One is really a platform to help cloud builders be secure. We want to make security simple. Let them just set their policy goals — ‘Hey, I need to be compliant to this standard or this standard. I want to follow the well-architected framework. These are my goals’ — and then the development teams need to work, deliver that value that they’re trying to do. [With] tools like Cloud One, our goal is to really help them deliver that value and be secure following those guard rails and those goals set by security.

Watch the complete video interview below, and be sure to check out more of SiliconANGLE’s and theCUBE’s coverage of AWS re:Invent. (* Disclosure: Trend Micro Inc. sponsored this segment of theCUBE. Neither Trend Micro nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)

Photo: SiliconANGLE