CYBERSEC 2022 uses cookies to provide you with the best user experience possible. By continuing to use this site, you agree to the terms in our Privacy Policy. I Agree

bg-inner

SESSION

09/22 09:30 - 10:00 Cloud Security Forum

How to Best Assess Your Cloud Security

Cloud is convenient for developers—only a few clicks to complete device deployment and only a few more to complete testing. However, this convenience also comes with complications and headaches, especially for network administrators. Many threats result from improper IAM or insecure configuration settings, and such threats typically need to be prevented through inventory and risk assessments. Unfortunately, many services are out of the network admins’ control, complicating inventory and risk assessments and creating a recipe for disaster. In this presentation, we will discuss how to best assess your cloud security; how to use different frameworks/methods to examine cloud assets and their corresponding risks and security levels; and discuss real-world security incidents.

LOCATION Taipei Nangang Exhibition Center, Hall 2 7F 701F LANGUAGE English
SESSION TOPIC Cloud SecurityIdentity ManagementPolicy Management

SPEAKER

Boik Su
CyCraft Technology Senior Cyber Security Researcher

Boik Su is a senior cybersecurity researcher at CyCraft Technology and is currently focused on cloud security, AD security, web security, and threat hunting. He takes an active role in the cybersecurity community and has delivered speeches at multiple seminars across the globe including HITCON, HITB, and HackerOne. He still participates in CTF competitions including SECCON CTF in Japan and HITCON CTF in Taiwan and has submitted multiple reports to bug bounty programs and open-source projects.

Dange Lin
CyCraft Cyber Security Researcher

Dange Lin is a cybersecurity researcher at CyCraft Technology and focuses on automotive security, cloud security, machine learning, and threat intelligence analysis. He is currently responsible for cybersecurity for MIH Working Groups. He has delivered speeches at various seminars including HITCON, MOPCON, and CYBERSEC.