Finance & Banking , Governance & Risk Management , Industry Specific
Building Resilience in a Multi-Cloud Environment
Lee Newcombe of Capgemini on Reducing Complexity in the CloudA well-managed multi-cloud strategy "is a sensible approach" because it allows organizations to move different workloads between providers, but it gets a "bit more complicated when you start thinking about workload portability," says Lee Newcombe, security director, Capgemini U.K.
See Also: Cloud Security and Developers: Role of Zero Standing Privilege
"I would argue that a well-architected solution on a single cloud is probably a little bit more resilient than trying to manage all this complexity for delivering that kind of workload portability," Newcombe says.
In order to reduce complexity, he says, "Keep things as simple as you can. Think about identity: Are you going to have a centralized identity management solution? Think about security monitoring: Are you going to centralize all of your logs in one place?"
In this video interview with Information Security Media Group, Newcombe discusses:
- Managing the complexity of hybrid, multi-cloud infrastructures;
- What cloud transformation means for security - in terms of cloud-native ways of working and supporting ephemeral workloads;
- Implementing a DevSecOps enterprise cloud strategy.
Newcombe is currently focused on cloud security and turning zero trust from buzzword to implementable philosophy. He has worked in the security industry for over 20 years, covering everything from penetration testing and incident response to security architecture and leadership across both public and private sectors. He is active in the U.K. cloud security community, presenting at industry events and participating within the U.K. Chapter of the Cloud Security Alliance, of which he was the acting chair for two years. The second edition of his book, "Securing Cloud Services," was published in 2020.