Cloud Security at Risk: Tackling Misconfigurations Head-On – Nadia Mazzarolo – CSP #204
In this episode, we dive into the critical role of proper configurations in cloud environments and why misconfigurations remain the leading cause of security breaches. From overly permissive access controls to unencrypted data stores and default credentials left unchanged, we explore real-world examples that adversaries exploit. Learn how organizations can mitigate these risks through proactive monitoring, automated tools, and a culture of security-first thinking. Tune in to uncover actionable insights to keep your cloud infrastructure secure.
This segment is sponsored by Fortinet Cloud Security. Visit https://cisostoriespodcast.com/fortinet to learn more about them!
Segment Resources: CoGuard CLI (Select cloud resources can be scanned with a free account): https://portal.coguard.io/auth/realms/coguard/protocol/openid-connect/auth?clientid=client-react-frontend&redirecturi=https%3A%2F%2Fportal.coguard.io%2F&state=7cd7e2ac-aa64-497d-8957-f0b8be3e2f8d&responsemode=fragment&responsetype=code&scope=openid&nonce=86649c48-03f3-44c1-9612-560d42e049d9
More info on the CoGuard CLI on Github: https://github.com/coguardio/
Open AI grant: https://openai.com/index/empowering-defenders-through-our-cybersecurity-grant-program/
Open AI research results on Github: https://github.com/coguardio/coguardopenairuleautogeneration_research
Securing Multi Cloud Environments - Tips from Nadia's co-founder/CTO - blog: https://www.coguard.io/post/securing-multi-cloud-environments
Sponsored By
Guest
Passionate about cyber security, Nadia Mazzarolo pivoted in 2019 from the music industry into co-founding and leading the business growth of CoGuard, a configuration security software company. With breaches on the rise, including having her own data involved on multiple occasions within a short span of time, she was inspired to tackle this growing issue:
Cyber tools are on the rise, but so are breaches. Why?” And so she joined her technical co-founder in building her first cyber security company.
Host
Jessica Hoffman is a Certified Information System Security Professional (CISSP) with almost 20 years of information technology and cybersecurity experience in both the government and private sectors. The majority of those years have been in Audit and Compliance. Jessica has dedicated her career to the safety, privacy of millions of Americans’ Personally Identifiable Information (PII), Protected Healthcare Information (PHI), and Federal Tax Information (FTI). She also is a Professor at Harrisburg University and The Pennsylvania State University. Jessica is a member of various organizations cultivating the next generation of cybersecurity professionals and also is a national speaker. Serving currently as the Deputy CISO for the City of Philadelphia and she enjoys long walks on the beach.
