Security & Governance

Untangling Data Entanglement


In the technology world, buzzwords and analogies flood the landscape. Analogies help us explain unfamiliar concepts in familiar terms, and when the analogy strikes a chord, it often launches a buzzword. This can be helpful in bridging the communications gap between technology and business. “Data gravity” is one of those buzzwords that now permeate our […]

Data Gravity and Its Impact on Data Protection Strategies


Data security was a straightforward process back when organizations stored all their data in on-premises IT environments. Organizations used the “lobster” security model – building hard-shelled exteriors to fend off threats at the perimeter — but they had fewer internal protections for the soft, delicious data inside. In a cloud-oriented world, data protection is much […]

Podcast: Shifting Security Left


As consultants, we work with organizations facing conflicts or blockers slowing down their cloud programs. Often times, these conflicts are the results of siloed groups not communicating at the right time, or place. We discuss the importance of breaking down these silos to gather organizational requirements early, and often. When we think about “shifting-left” in […]

The Serverless Cloud Security Model: A Point Of View


Introduction Over the course of a few years, enterprises have been exploring serverless technology for application development, system automation and a host of other use cases. After initial research and experimentation on smaller projects, companies are now realizing the viability of the serverless model for their core, business-critical workloads. Serverless technology is being adopted by […]

Governance Models in a New Cloud World


Governance Practices: “IT governance is a set of practices designed to ensure alignment between the business vision and IT strategy, which facilitates the oversight of these enterprise demands through consistent management, cohesive policies, guidance, processes and decision rights for a given area of responsibility. IT management is primarily concerned with the effective, stable and optimal […]