Collection is not detection and other rules for modernising sec ops

Security operations has always been hard. How many logs should we collect? Which logs should we collect? How to we respond and remediate things quickly? Then just when you thought you'd got it right for your on-premises, you've decided to move the cloud and have to start all over again... or do you? In this talk Sarah will discuss how security operations change from on-prem to the cloud and how to optimise your security operations in a hybrid environment to make use of modern tooling.

Resources mentioned in this session:

  • Coming soon

Sarah Young

Sarah is the self-titled Princess of Microsoft Azure Security. Allegedly she lives in Melbourne but is more likely to be found in airport lounges across Asia. Sarah loves cloud security and spends most of her time telling people how to do it better and generally nerding about tech things. Winner of Security Champion 2019 at the Australian Women in Security awards, Sarah has spoken about a variety of security topics - including cloud native, container and Kubernetes security - across the world.

Find Sarah on twitter


The MyDevSecOps community is powered by Snyk Ltd. Our aim is to create a vendor-neutral space to share knowledge and best practices related to software security.

  • White Twitter Icon
  • White YouTube Icon