With more than 18 years of experience, Jerome is a forward looking and innovative security executive with strong hands-on experience ranging from defining governance, reengineering processes and implementing technical solution. Driven by a deep passion for continuous improvement and challenging the status quo, Jerome believes in cultivating a balanced culture of business-driven security through operational effectiveness. As Pivotal’s Field Chief Information Security Officer for Asia Pacific, Jerome has been charted to advance cloud-native security and modern user-centric development methodologies across Pivotal’s customers and offices in the region. He is an advocate of adversarial testing and chaos engineering as a practice for continuous improvement in security and resilience.Before joining Pivotal, Jerome served as Director, Security Architecture & Delivery at Prudential Asia and regional Chief Security Officer at Natixis. Before working in security and resilience, Jerome held positions as system engineer and developer. Jerome holds a Master of Science in IT Engineering from EFREI, France, and an MBA in Finance from HKUST Business School.View the profile
About the talk
Major organisations are facing two seemingly contradicting threats: on the one hand, they are challenged to become more agile and efficient by the rise of new players such as startups and FinTech, while on the other hand, the constant flow of advanced attacks and breaches force them to become more cautious about their software. The competition requires fast execution and innovation, while security threats require more control. The speed of execution and complexity of attacks increases exponentially, however the attacks almost systematically rely on missed security hygiene, highlighting an evident truth: security and other IT operators are stretched thin by manual processes and traditional approaches to security.As DevOps approaches become mainstream, we can look at the evidence of what has enabled the success of the cloud tech giants: cloud-native architectures. Leveraging container orchestration, and end-to-end automation, cloud-native security enables security teams to reduce their manual tasks and focus on what matters most: reduce risk, developing added-value services, and collaborating with users and developers to raise awareness and build secure tools, finding vulnerabilities and suspicious activities and improving the incident response. In this presentation, we will review the improved security outcomes experienced by the largest organisations when transiting to a cloud-native architecture, as well as emerging practices enabling the teams to remain efficient and collaborate better.
Buy this talk
Access to all the recordings of the event
Buy this video
With ConferenceCast.tv, you get access to our library of the world's best conference talks.