Architectural Risk Assessments

Duration: 50 mins
Brian Sletten
Forward Leaning Software Engineer

We think about architecture in terms of its capacity to describe existing systems or its ability to induce runtime properties, but we often do not spend enough time thinking about its role in security. An architectural risk assessment (ARA) is an organizational activity that should be done periodically, usually at the beginning of a project or prior to a major refactoring. It is an attempt to align security goals with business goals and to measure and describe the risks associated with systems and the people who use and design them. It is also a useful approach for considering potential for abuse and how that can be mediated. We will discuss an overview of the approach and its various activities.

You may also be interested in

15 mins
Best Practices In Implementing Container Image Promotion Pipelines

Surprisingly, implementing a secure, robust and fast promotion pipelines for container images is not as easy as it might sound....

25 mins
Quality on Cloud 9: 9 Aspects of Delivering a Great Product on Cloud

Proliferation of microservices, cloud infrastructure and agile methodologies do not ensure a quality product, successful customer interactions or a faster...

25 mins
Consumer Banking in Cloud

Join this talk to understand Goldman Sachs' Marcus product offering to its consumers and how services and products are deployed...

50 mins
Beyond Entitlements for the Cloud Native

A Policy Engine is a tool that allows for checking user privileges as well as evaluate a responsibility matrix based...

180 mins
Serving Models Made Easy with Stateful Functions

Stateful Functions is an open source framework that reduces the complexity of building and orchestrating distributed stateful applications at scale....

25 mins
Self Service Kubernetes for Early Adopters

Kubernetes has ushered in an era of complex and often large-scale micro service applications running as containers. As with any...