Journey to the Cloud: Security by Design Approach

Wednesday, May 15 | 2:20PM–3:20PM CT | Vevey 1-2, Second Floor Event Centre
Session Type: Breakout Session
Delivery Format: Interactive Presentation
Security by design is a deliberate process of ensuring security is built into the entire process versus "bolted on" after the fact. We will discuss the shared security responsibility model: both the vendor and the customer are accountable for the security of the cloud. We will address organizational culture and change before moving to the cloud, reviewing people, processes, and technology, and explore the built-in and readily extensible audit capabilities of AWS and how it can enhance the security posture of a migration. Finally, we will review our journey of implementing security at every layer.

Outcomes: Understand the importance of addressing organizational culture before attempting a cloud migration * Learn about the various components of a cloud security model and how to implement them * Understand how security by design allows an organization to improve its security posture as it operationalizes its cloud environment


  • Kyle Gustafson

    Information Security Engineer, California Polytechnic State University, San Luis Obispo
  • Doug Lomsdalen

    Information Security Officer, California Polytechnic State University, San Luis Obispo

Resources & Downloads

  • Cal Polys Journey to the Cloud

    Updated on 11/26/2019