In this engaging Passwork Cybersecurity Webinar, we break down the realities of cloud security: shared responsibility or shared confusion? Join host Terpal and special guest David Gordon, cybersecurity lecturer and former Google cloud specialist, for a deep dive into the challenges, pitfalls, and best practices of securing your data in the cloud.

David shares his journey from tech sales to the frontlines of cloud and cybersecurity, offering candid insights and practical strategies every organization can use. The discussion covers real-world breaches, contract loopholes, compliance headaches, and the human factor—all through the lens of the shared responsibility model.

Key Topics and Time Codes:

• 00:00 – Introduction: Meet David Gordon and the path from tech sales to cloud security
• 03:24 – Shared responsibility explained: Who secures what in the cloud?
• 05:51 – Security gaps in practice: S3 bucket misconfigurations, IAM mistakes, and lessons learned
• 09:09 – Contracts vs. reality: What CISOs must look for in the fine print
• 12:21 – Vendor transparency: How to verify your provider’s security controls and incident response
• 14:44 – Misconfiguration mayhem: Who owns ongoing monitoring and remediation?
• 18:12 – Shadow IT: The risks of decentralized cloud usage and how to address them
• 21:08 – Incident response: Challenges and solutions when breaches happen
• 24:16 – IAM risks: How to avoid over-provisioning and enforce least privilege
• 27:11 – AI in cloud security: Does responsibility shift with automation?
• 30:44 – Data sovereignty & privacy laws: Navigating compliance across jurisdictions
• 33:52 – Multi-cloud confusion: How to ensure consistent security and avoid chaos
• 37:05 – Ongoing assurance: Best practices for verifying your provider’s security posture
• 39:32 – Is shared responsibility just marketing? The real effectiveness of the model
• 42:33 – Who owns the risk? Legal realities and operational truths
• 45:50 – The human factor: Addressing people as the weakest link—at both provider and client levels

Packed with actionable advice and expert perspectives, this episode is essential for CISOs, cloud architects, IT leaders, and anyone navigating the evolving landscape of cloud security.

Don’t forget to subscribe for more insightful discussions on cybersecurity, risk management, and digital trust!