As part of my community building effort with informing, educating and building a zero-trust culture, Bedroc (Bedroc | IT Strategy & Technology Consulting) , my current company is leading an upcoming 4-hour training event that will be locally hosted at the Capital Factory this coming November (11/3/22). From my current experience as a cloud security technology consultant and practitioner, this engineering lab will assist to comprehensively address the network pillar of the CISA Zero-Trust (June 2022) and CSA ZTA guidelines (Network segmentation), as well as other pillars involved with orchestration, automation, and governance. In so doing, the training would address the public cloud network threat mitigation on any network breach, ransomware, or intrusion risks in a public cloud or hybrid on-prem deployment.
Our partner and event sponsor is Aviatrix. We selected them because they are cloud-provider agnostic as lean towards being vendor-agnostic, and do a very good job as a software vendor of automating security controls, providing encryption, deployment of firewalls (firenets) and securing network access control at the transit gateway layer and of control, data and management plane areas for cloud networks
Let me know if you would like to get yourself involved, socialize or would like to get ISACA members to attend this hands-on workshop. The event will be totally free of charge for security, network and cloud security engineering practitioners – it just requires an individual registration to be confirmed on Eventbrite to guarantee attendance, lunch and a seat. They don't do CPE credits, but they will certainly provide a good learning experience and knowledge. I don't know how many seats will remain after this week, because it is free and lunch is sponsored, but it is a very popular and emerging topic and deployment knowledge area in the cloud development and engineering area.
Cloud Engineering Lab Workshop- eventbrite link: https://www.eventbrite.com/e/cloud-engineering-lab-tickets-433718362297
CISA ZT guidance Document: https://www.cisa.gov/sites/default/files/publications/CISA%20Zero%20Trust%20Maturity%20Model_Draft.pdf
My CSA Working group https://cloudsecurityalliance.org/research/working-groups/zero-trust/
Document : https://cloudsecurityalliance.org/artifacts/towards-a-zero-trust-architecture/
------------------------------
Kristian Gonzalez
Security Team
IoT Home Lab
------------------------------