We’re back for a new, exciting year of the Google Cloud Platform Podcast! Mark Mirchandani and Carter Morgan start 2022 with a jointly hosted interview with Anton Chuvakin and Timothy Peacock of the Cloud Security Podcast team. Our guest, Phil Venables, is here to tell us about the driving trends in cloud security today.
Phil starts the show with a discussion on the advances in cloud security in general and how it compares with on-prem security. Megatrends like economies of scale and competition between cloud providers benefit cloud users by allowing better security for less money. Cloud environments tend to be simpler and therefore easier to manage, and with scaling and geographic location options, cloud projects allow more flexibility to reach security and sustainability goals.
Phil talks about the iteration process of advances in security based on customer requirements and how this builds client trust. The Shared Responsibility Model, where the cloud provider runs a secure infrastructure and the customer configures their project securely in the cloud, is a great start, Phil tells us. But with Shared Fate, he sees the provider crossing the responsibility barrier to work together with the client towards a secure project through actions like analyzation of security defaults. Customer feedback helps Google Cloud make a better product, which in turn helps customers, creating an environment of reliability and shared trust.
We talk about how the Shared Fate model and shared incentives work together to create a closer partnership between cloud providers and customers, and Phil elaborates on the idea of project security as an immune system. We tackle the idea of security diversity and whether it benefits clients to expand their security outside of cloud provider offerings. Phil helps security novices understand valuable feature-add security services and what to look for in the future.Phil Venables
Phil leads the risk, security, compliance, and privacy teams for Google Cloud. Prior to joining Google Cloud, Phil was a Partner at Goldman Sachs where he held multiple roles over a long career, initially as their first Chief Information Security Officer, a role he held for 17 years. Before Goldman Sachs, Phil held multiple CISO roles as well as senior engineering roles across a range of finance, energy and technology companies.Cool things of the week
Mark and Carter are working on some cool new changes to the podcast.Hosts
Carter Morgan, Mark Mirchandani, Anton Chuvakin and Timothy Peacock