Application Security , Cloud Security , DevSecOps
Security at the Speed of the Cloud
McKinsey CISO Dan Fitzgerald on DevSecOps and the Future of Cloud SecurityMigrating from on-premises data security to the cloud and then embedding security in the application development process are common challenges for enterprises. Dan Fitzgerald, a CISO at the consultancy McKinsey & Co., shares insights on how to make these transitions.
See Also: Webinar | Securing Cloud Architectures: Implementing Zero Standing Privileges
Two of the common challenges Fitzgerald sees: Changing the culture and getting used to the agile element of development.
"[You have to] have both the resources and the talent to start to implement automated security that will actually align well with what an organization is trying to do," Fitzgerald says.
In a video interview at Information Security Media Group's recent Fraud and Breach Summit in Chicago, Fitzgerald discusses:
- Obstacles organizations face in cloud migration;
- The DevSecOps challenge;
- How to grow the skills needed for security teams.
Fitzgerald is CISO, new ventures, for the consultancy McKinsey & Co. He currently leads cybersecurity for a large cloud hosting and software development business unit. He previously served as the CISO for Uptake - a startup in predictive maintenance, where he created and implemented a cloud security program. He also was a consultant with PwC, Accenture and Trustwave, helping clients deal with their cybersecurity, privacy and IT risk management challenges.