Follow me:
Listen on:

Day Two Cloud 055: Securing Cloud Infrastructure And Applications

Episode 55

Play episode

Welcome to Day Two Cloud. Security is difficult and tricky, but we’ve got an amazing guest to help you improve your security posture and manage your cloud risk. Our guest is Tanya Janca, Founder, Security Trainer, and Coach at She Hacks Purple.

We discuss:

  • Key cloud security areas including the network, identity, and application security
  • Whether to approach security from an infrastructure or application view
  • Managing identity in the public cloud
  • Getting visibility without getting overwhelmed
  • API security
  • Security considerations for SaaS applications
  • Building processes to manage risk across a growing number of cloud applications
  • The intersection of security and DevOps
  • More


  1. Multi Factor Authentication for anything you care about. “This messes attackers UP!”
  2. When you go to cloud, ZERO TRUST. The edge matters, but it’s not enough.
  3. Use the security tools your cloud provider is giving you. You’re paying for them.

Sponsor: Datadog

Datadog is a monitoring platform for cloud-scale infrastructure and applications. Datadog provides dashboarding, alerting, application performance monitoring, and log management in one platform so you can get end-to-end visibility quickly. It integrates seamlessly with AWS, so you can start monitoring EC2, RDS, ECS, and all your other AWS services in minutes. Try it yourself with a free, 14-day trial and get a free Datadog T-shirt! Visit to get started.

Show Links:

Tanya Janca @shehackspurple (Twitter, YouTube, Twitch)

More from this show

Day Two Cloud 174: Building Kubernetes Clusters

On today's Day Two Cloud podcast we walk through how to build a Kubernetes cluster to support a container-based application. We cover issues such as what constitutes a minimum viable cluster, rolling your own vs. Kubernetes-as-a-service, managing multiple...

Episode 55