Operationalizing Cloud Security with the ONUG Cloud Security Notification Framework (CSNF)

Spring 2022

The ONUG canonical data model is making normalization of cloud security notifications a reality as it provides translation services across cloud service providers. For cloud consumers this means faster threat hunting resolution, cloud governance, greater efficiency of security infrastructure, streamlined SOC workflows and faster SOC personal on-boarding. In short, CSNF enables SOC teams to operationalize cloud security. In this session the ONUG Automated Cloud Governance working group announces the CSNF Minimal Viable Product and provides a roadmap of what’s in store for the canonical data model and decorator in the coming quarters.


I’m the Co-Founder and Co-Host of The Tech Fugitives Show. The show covers IT news with a dash of science. Mix in some humor and it becomes… “Tech Talk that doesn’t Suck!”

Karl Miller is a US Navy veteran and works as Director of Product Management for OCI Security Products covering internal and external security. He has more than 20 years of experience in multiple areas of cyber security including cryptography, identity & access management, and Operations. For the past 6 years, he has concentrated on securing cloud services and customer workloads. He holds patents in federated authentication and currently resides near Atlanta, GA, USA.

Kyle Rose is a Senior Manager and Capability Architect of the Adversary Management function at Intuit. Kyle leads a team of Principal Software Engineers solving complex cloud security problems. He has 14 years of experience in cybersecurity and specializes in: DevSecOps, Security Architect, & Cloud Security. Kyle has an MS in Computer Science in Cybersecurity from The George Washington University. He is currently based in Jacksonville, FL. Kyle is a contributor to the ONUG automated cloud governance working group.

Steve has 17 years of Fidelity experience leading, design, development, and delivery of security tools and technology solutions. He is skilled in building a great team, which strives to advance the goals of the firm, and strong skills in AWS Cloud Security, Information Security, Identity Management, and Software Development, policy creation, and business process development.

Janet Van is a Product Manager at IBM Cloud and owns the IBM Cloud Security and Compliance Center product. The Security and Compliance Center focuses on providing unified visibility across IBM Cloud and its partners as a cloud security posture management tool for central security and compliance management. Her role as the product focal is to own the product life cycle management across teams (development, design, research, tech sales, support, marketing, etc) and to set the long-term vision, priorities and strategic roadmap for the offering. Alongside, she is also driving overall user experience and quality in the offering and managing the go-to-market activities. Previously, she started her technology career as a software developer within CIO at IBM. During her time within the CIO, she deepened her roles in technical delivery in product offerings supporting IAM and MFA security infrastructure at an enterprise level, globally within IBM. With each new role, she has always strived to explore and broaden her passion working across business and organizations to deliver and improve product and customer experience. Outside of work, Janet is a dog-mom who who enjoys spending time with her heeler pups and hiking state parks across North America.

Preeti is a Principal Product Manager for Microsoft’s Cloud and AI Security group. With over 12 years of experience with Microsoft, Preeti has delivered multiple Bing and .NET products. In her current role, Preeti is responsible for Azure Sentinel ecosystem and community charter. She’s passionate about delivering great customer and developer experiences. Preeti is an active contributor to the ONUG Automated Cloud Governance working group, driving the Cloud Security Notification (CSNF) initiative.

Related events