“Cloud-native” is no longer just a buzzword. The benefits of faster releases, easier management, and reliability make it a very attractive architecture solution. However, while the idea of “shifting to the cloud” is great in theory, it doesn’t come without its fair share of obstacles for organizations, especially when ensuring security is brought into the fold. Traditional AST methodologies used are often not sufficient for more complex, cloud-native applications, requiring new approaches.
In this talk, we’ll discuss the differences between traditional and cloud-native application security, the challenges AppSec teams may face with these cutting-edge architectures, and best practices that should be taken into consideration when testing and securing these applications.