AI
AI
AI
Balancing innovation and resilience with built-in cybersecurity
Cybersecurity has become a cornerstone and a challenge for enterprises seeking to balance innovation with resilience. Businesses are incorporating cutting-edge technologies, such as artificial intelligence and cloud-native platforms, while many look to simplify the developer experience.
For some, there’s been a goal to ensure a secure by default philosophy. That goal comes through eliminating common vulnerabilities, such as open ports, default credentials and insecure configurations, according to Ty Sbano (pictured), chief information security officer of Vercel Inc.
“We’re dealing with a secure by default experience that you just go, ‘You know what? I want a web app. It’s on the web. I don’t have to think about did I leave administration access open or not,’” Sbano said.
Sbano spoke with theCUBE’s Dave Vellante at the NYSE CXO series, and the interview was rerun at the recent Cyber Resiliency Summit, during an exclusive broadcast on theCUBE, SiliconANGLE Media’s livestreaming studio. They discussed the importance of a secure-by-default approach and the evolving challenges of trust and safety in modern hosting platforms.
Enhancing the developer experience with built-in security
Adopting regulated industry best practices in less structured environments requires designing security into systems from the start. It’s often said that infrastructure is code, and everyone wants it to be true, according to Sbano.
“We talk about ephemeral infrastructure as well, so it’s not long-lived,” he said. “If there’s something bad that happens, like a zero-day or a CBE — common vulnerability enumeration — that is out there that people need to go fast and fix, well, for us, it could just be an asset that is static and temporary, and then all of a sudden, it’s torn down and rebuilt.”
Cloud providers excel at their part of the shared responsibility model, but many assumed the cloud handled all security aspects. This misconception left developers burdened with unexpected security responsibilities, often detracting from their primary focus of writing code.
“If everyone’s the security expert, no one’s the security expert. That’s the challenge with that overly shared responsibility. You do need people on point,” Sbano said.
Here’s the complete video interview, part of SiliconANGLE’s and theCUBE Research’s coverage of the Cyber Resiliency Summit:
Photo: SiliconANGLE
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
