In this real-training-for-free event, Randy Franklin Smith will delve into the most important things to do for securing Linux-based workloads in the cloud including:
- root and other local accounts
- implementing least privilege
- tying local actions to corporate identities
- remote admin access
- services and daemons
- patch management
In particular, he will examine security issues and strategies shared between on-prem and cloud Linux and highlight important differences. Just one example is, in an on-prem environment you can assume that communication with other components of the overall environment take place on an internal private network. But in the cloud that takes extra effort to accomplish and is often neglected.
BeyondTrust has been enhancing Linux security and integrating with AD for decades. Patrick Schneider will join Randy and briefly show attendees how BeyondTrust’s Linux Cloud Security solutions can increase visibility, provide more granular controls, and better align with modern security guidelines and compliance mandates.
Randy Franklin Smith is an internationally recognized expert on the security and control of Windows and Active Directory security who specializes in Windows and Active Directory security. He performs security reviews for clients ranging from small, privately held firms to Fortune 500 companies, national, and international organizations.
Randy Franklin Smith began his career in information technology in the 1980s developing software for a variety of companies. During the early 1990s, he led a business process re-engineering effort for a multi-national organization and designed several mission critical, object-oriented, client/server systems. As the Internet and Windows NT took off, Randy focused on security and led his employer's information security planning team. In 1997, he formed Monterey Technology Group, Inc. where he serves as President.
- Certified Information Systems Auditor (CISA)
- Microsoft Security Most Valuable Professional (MVP)
- Systems Security Certified Professional (SSCP)
- Information Systems Security Association (ISSA)
- Information Systems Audit and Control Association (ISACA)
- Center for Internet Security (CIS)