A vendor-neutral look at real obstacles and architectural solutions for Information Security compliance when deploying OpenStack.
So you think the architecure is complete, but perhaps the security division didn't really understand it as well as you thought? Bringing OpenStack into an enterprise environment can often present big challenges for a conventional Information Security organisation - and big obstacles for the deployer.
- How can long-established approval processes apply to cloud?
- Can orchestration and automation work through these barriers?
- Why do all these network trunks terminate in those boxes?
- Where do the firewalls go?
- But CI can improve security, right?
This session takes real-life deployment issues from several large-scale deployment projects across different customers (financial services, telecomunications, manufacturing) and presents solution approaches for each.
Deployers and OpenStack developers:
- Understand the types of questions and problems likely to be encountered during deployment
- Gain some insight into Information Security viewpoint
- Be ready to answer some of the security questions towards your deployment architecture
Enterprise Security professionals:
- Understand how OpenStack can address security requirements
- High-level view of features and security design approaches
- See how the "cloud way" can potentially improve controls without manual intervention