Solving for Cloud Security at Scale with Chris Farris
Chris Farris, Cloud Security Nerd at Turbot, joins Corey to discuss how he wound up in the world of DevRel at Turbot and what he sees for the future of multi-cloud security practitioners. Chris explains that while 90% of what he works on revolves around AWS, it’s important to close the gap on learning the other cloud providers because they make up more than 10% of his risk. He also reveals his major concerns about Azure, the potential of a return to on-prem for sovereign data reasons, and Oracle’s interesting approach to entering the cloud development arena.
About Chris
Chris Farris has been in the IT field since 1994 primarily focused on Linux, networking, and security. For the last 8 years, he has focused on public-cloud and public-cloud security. He has built and evolved multiple cloud security programs for major media companies, focusing on enabling the broader security team’s objectives of secure design, incident response and vulnerability management. He has developed cloud security standards and baselines to provide risk-based guidance to development and operations teams. As a practitioner, he’s architected and implemented multiple serverless and traditional cloud applications focused on deployment, security, operations, and financial modeling.
Chris now does cloud security research for Turbot and evangelizes for the open source tool Steampipe. He is one if the organizers of the fwd:cloudsec conference (https://fwdcloudsec.org) and has given multiple presentations at AWS conferences and BSides events.
When not building things with AWS’s building blocks, he enjoys building Legos with his kid and figuring out what interesting part of the globe to travel to next. He opines on security and technology on Twitter and his website https://www.chrisfarris.com
Links Referenced:
- Turbot: https://turbot.com/
- fwd:cloudsec: https://fwdcloudsec.org/
- Steampipe: https://steampipe.io/
- Steampipe block: https://steampipe.io/blog
Join our newsletter
2021 Duckbill Group, LLC