Policy Orchestration for Cloud-Native Environments: Interview With Maor Goldberg, CEO At Apolicy
Tell us about your journey. What led you to the cloud-native security space?
Curiosity. I’ve spent over 20 years in the enterprise software industry so naturally, I was interested to learn about the new technology stack that the industry is so excited about. It was clear this was not going to be just industry hype it has substance and tangible solutions that are here to stay.. For me, as an entrepreneur, it’s an opportunity to innovate and help the industry evolve beyond the obstacles that held us back in the traditional enterprise.
How has cloud-native technology stack evolved in the last few years, and what challenges does that present for security pros?
Five years ago, cloud native started with Kubernetes. Today, there are over 50 projects in the CNCF’s (Cloud Native Computing Foundation) portfolio, and this number is climbing steadily. If I had to focus on one challenge it would be complexity. There are many technologies, countless Open Source projects, and a rapidly growing stack of commercial products. How organizations are going to choose, integrate, manage, and control all of this is going to be a big challenge.
ML / AI has impacted virtually every industry. How is it specifically impacting cloud security?
Cloud security, in some key aspects at least, involves collecting significant amounts of data and using this data to make smarter decisions. Could be decisions to identify bad actors or decisions to make better recommendations where it makes sense. ML and AI already are significant for the Security Industry and will continue to be in many areas, including cloud security.
You specialize in policy orchestration for cloud-native environments. Why is this important for companies?
Policy, both explicitly and implicitly is everywhere in the cloud-native stack. As I mentioned earlier, the cloud-native stack is complex and will continue to get more complex over time. Organizations of all sizes will find that, without proper tools and processes, manually controlling the cloud-native stack with policies that are distributed and fragmented is a very difficult task – and in many cases, impossible.
How would a company use your technology?
Exactly the way drivers today are increasingly adopting active safety systems in their cars. Seamlessly. Your car is drifting from it’s lane? The system will turn the steering wheel for you. There’s a car in your blind spot when you’re trying to change lanes? The system will alert you and slightly push the steering wheel in your direction.
So for example, if you’re trying to deploy a new Kubernetes Workload with risky configuration, we’ll alert and block it before it goes to production. If there’s a new risk in your production environment, we’ll shine a light on the issues and help you remediate them across your entire CI/CD pipeline. We’re working tirelessly to make sure we naturally fit into existing processes in order to meet our customers where they are and help them identify issues, build the best policies and easily remediate problems where they exist.
What advice would you have for a budding DevOps professional entering the space today?
Think about the process, not just the technology. Think about simplicity and control so you could scale with peace of mind.
What are some related technologies out in the market that you are excited about?
CI/CD and GitOps. I wish I had these tools and this level of automation when I was building and deploying software on Windows NT in 1997!
Tag the one person in the industry whose answers to these questions you would love to read:
@RazielTabib, CEO and Founder of Codefresh.io
Thank you, Maor! That was fun and we hope to see you back on AiThority.com soon.
Maor Goldberg is the CEO at Apolicy. Additionally, Maor Goldberg has had 2 past jobs including Director, Business Development at SailPoint Technologies.
Apolicy CEO Maor Goldberg has over 20 years in Cyber Security and Identity and has been leading large Cyber Security teams since 2002.
Prior to Apolicy, Maor was a Co-Founder and CEO of Whitebox Security until it was acquired by SailPoint Technologies (NYSE:SAIL) where he serves as a Director of Business Development.