Operationalizing Cloud Security in the SOC

Spring 2022

Cloud Security is new to most SOCs. SOC teams are optimized for on-prem threat hunting, incidence response etc. As more workloads move to SaaS/IaaS/PaaS how do SOC teams integrate and operationalize cloud security? This roundtable discussion session is exclusive for IT teams. No slides, just sharing best practices and challenges in a safe environment led by ONUG board members and thought leaders. Come to learn from your peers and see if you’re doing it right.


Peter is the Director of cloud security engineering at Cigna, a Fortune 13 global health service company. Peter leads a team of dynamic and talented engineers focused on building out and maintaining scalable and secured high performing compute, storage, and reliable infrastructure in the cloud. Peter enjoys using his development skills to perform security research around provable security, automated cloud governance, security as code, and zero trust architectures. Peter is a contributor to the ONUG automated cloud governance working group and is also a member of the Cloud Security Alliance CxO advisory trust council


Kyle Rose is a Senior Manager and Capability Architect of the Adversary Management function at Intuit. Kyle leads a team of Principal Software Engineers solving complex cloud security problems. He has 14 years of experience in cybersecurity and specializes in: DevSecOps, Security Architect, & Cloud Security. Kyle has an MS in Computer Science in Cybersecurity from The George Washington University. He is currently based in Jacksonville, FL. Kyle is a contributor to the ONUG automated cloud governance working group.

Scott Kennedy is the Security Architect for Adversary Management for the Security Team at Intuit. Certifications: CISSP-ISSAP, CISA, GCIH, and GIAC. He has 30+ years of experience as a Unix system administrator, including 20 years of dedicated security experience within commercial enterprises. Kennedy is an SME in fields including cloud security, virtualization, IT security, document retention, disaster recovery, IACNA/CND and forensics. As part of the Cloud Security Team, he is responsible for bringing scientific rigor and analysis to the decisions for cloud security. He is an active member of the Southern California IT Security scene and manages Intuit R3DC0N security conference villages experience.


Related events