AWS for Software Companies Podcast

By: Amazon Web Services
Listen for free

  • Summary

  • Stay current on new cloud trends. Top software companies, respected industry analysts, and experienced consultants join Amazon Web Services leaders to talk about the cloud topics that matter to you—including the latest in AI, migration, Software-as-a-Service, and more. We produce new episodes regularly.
    © 2024 Amazon Web Services
    Show More Show Less
Economics Politics & Government
Show More Show Less
Episodes
  • Ep075: Beyond Compliance: Crafting Effective Security Culture with leaders from Clumio, Mongo DB, Symphony and AWS

    Ep075: Beyond Compliance: Crafting Effective Security Culture with leaders from Clumio, Mongo DB, Symphony and AWS
    Jan 21 2025
    From hard-coded credentials to boardroom buy-in, join four tech security leaders from Clumio, Mongo DB, Symphony and AWS, as they unpack how building the right security culture can be your organization's strongest defense against cyber threats.Topics Include:Security culture is crucial for managing organizational cyber riskGood culture enables quick decision-making without constant expert consultationMany security incidents occur from well-meaning people getting dupedPanel includes leaders from AWS, Symphony, MongoDB, and ClumioMeasuring security culture requires both quantitative and qualitative metricsBoard-level engagement indicates organizational security culture maturitySelf-reporting of security incidents shows positive cultural developmentSecurity committees' participation helps measure cultural engagementHard-coded credentials remain persistent problem across organizationsInternal audits and risk committees strengthen security governancePublic security incidents change board conversations about prioritiesLeadership vulnerability and transparency help build trustBeing pragmatic beats emotional responses in security leadershipSecurity programs should align with business revenue goalsCustomer security requirements drive program improvementsExcessive security questionnaires drain resources from actual securitySecurity culture started as exclusionary, evolved toward collaborationFinancial institutions often create unnecessary compliance burdenEarly security involvement in product development prevents delaysSecurity teams must match development team speedTrust between security and development teams enables efficiencySmall security teams can support large enterprise requirementsVendor partnerships help scale security capabilitiesProcess changes work better than adding security toolsSecurity leaders need deep business knowledgeTechnical depth and breadth remain essential skillsEvangelism capability critical for security leadership successInfluencing without authority key for security effectivenessCrisis moments create opportunities for security improvementSocializing between security and development teams builds trustDEF CON attendance helps developers understand security perspectiveBug bounty programs provide continuous security feedbackRegular informal meetings between teams improve collaborationBuilding personal relationships improves security outcomesModern security leadership requires balance of IQ and EQParticipants:Jacob Berry – Head of Information Security, ClumioGeorge Gerchow – Interim CISO, Head of Trust, Mongo DBBrad Levy – Chief Executive Officer, SymphonyBrendan Staveley – Global Sales Leader, Security Services, Amazon Web ServicesSee how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/
    Show More Show Less
    47 mins
  • Ep074: Unlocking Global Growth - Mastering Compliance Across Boundaries

    Ep074: Unlocking Global Growth - Mastering Compliance Across Boundaries
    Jan 14 2025

    AWS executive Giancarlo Casella explains how organizations can navigate global privacy regulations and achieve compliant international expansion using AWS's privacy reference architecture.

    Topics Include:

    • Welcome to executive forum on security and Gen AI
    • Introduction of Giancarlo Casella from AWS Security Assurance Services
    • AWS helps organizations with compliance and audit readiness
    • Global expansion requires understanding local privacy laws
    • Germany and France interpret GDPR differently
    • Germany has Federal Data Protection Act (BDSG)
    • France focuses on consumer privacy through CENIL
    • Risk of non-compliance includes fines and reputation damage
    • Privacy laws existed in only 10 countries in 2000
    • EU Privacy Directive of 1990 was prominent
    • By 2010, forty countries had privacy laws
    • HIPAA and GLBA introduced in United States
    • Now over 150 countries have privacy regulations
    • 75% of world population under privacy laws soon
    • Regulations are vague and open to interpretation
    • GDPR example: encryption requirements lack specificity
    • Need right stakeholders for privacy compliance
    • Legal team must lead privacy interpretation
    • Engineering implements technical privacy aspects
    • Risk and compliance teams coordinate evidence gathering
    • Data Protection Officer oversees entire program
    • CIO, CTO, CISO alignment creates strong foundation
    • Security transforms from bureaucratic to revenue enabler
    • AWS develops cloud-specific privacy reference architecture
    • Industry standards provide guidance frameworks
    • AWS privacy reference architecture focuses on cloud specifics
    • Data minimization and individual autonomy are key
    • Case study: Middle Eastern AI company expands to Canada
    • Company used CCTV at gas stations
    • Created privacy baseline and roadmap
    • Data flow documentation essential for compliance
    • Continuous compliance strategy helps enable success
    • Aligning stakeholders across different organizational lines
    • Future of US federal privacy regulation discussed
    • Discussion of responsible AI usage requirements


    Participants:

    • Giancarlo Casella - Head of Business Development and Growth Strategies, AWS Security Assurance Services


    See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/
    Show More Show Less
    28 mins
  • Ep073: The Evolving Threat Landscape – Reshaping Cybersecurity Practices

    Ep073: The Evolving Threat Landscape – Reshaping Cybersecurity Practices
    Jan 7 2025

    Haggai Polak – Chief Product Officer, Securonix and a veteran cybersecurity expert examines how artificial intelligence, quantum computing, and resource constraints are fundamentally transforming the threat landscape for security leaders

    Topics Include:

    • AI transformation of cybersecurity landscape from past tactical focus
    • CISO accountability and regulatory pressures increasing significantly
    • Attack surface expanding beyond traditional network boundaries
    • Quantum computing threatens current cryptographic protections
    • Defenders remain understaffed and outmatched against sophisticated threats
    • Securonix leads SIEM/SOAR space with 1000+ global customers
    • World Economic Forum identifies misinformation/disinformation as major crisis
    • AI benefits attackers more than defenders currently
    • Small/medium enterprises falling below cyber poverty line
    • AI enables faster, more sophisticated malware development
    • Deepfakes caused $25M loss in Hong Kong CFO impersonation
    • Digital tsunami: broadband, IoT, cloud everywhere expanding attack surface
    • 50+ democracies face election security challenges in 2024
    • Cloud intrusions increased 75% between 2022-2023
    • Quantum-resistant cryptography transition needed within 10 years
    • SEC regulations require specific cybersecurity incident disclosure guidelines
    • 4 million unfilled cybersecurity positions globally
    • Cybercrime-as-a-Service growing, estimated $1.6B annual revenue
    • 81% of organizations faced ransomware attacks in 2023
    • Insider threats increasing with remote work adoption
    • 30,000+ vulnerabilities published last year, half critical/high
    • Mean time to exploit now 44 days
    • Securonix Eon leverages AI to increase analyst efficiency
    • Dark web selling corporate credentials for $10,000
    • Balance needed between protection and detection/response investments


    Participants:

    • Haggai Polak – Chief Product Officer, Securonix


    See how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/
    Show More Show Less
    33 mins

What listeners say about AWS for Software Companies Podcast

Average customer ratings

Reviews - Please select the tabs below to change the source of reviews.

Audible.co.uk reviews

Amazon reviews
No Reviews are Available