2025-10-22 –, Europe
This talk describes the European Commission approach to cloud adoption from 2013-2025 along with stories of the good, the bad and the ugly and how EC has iterated upon its risk appetite and security debt appetite over time.
In this talk I will present both how public cloud adoption should be done in 2025 and how EC has done it since day 1 of our experimentation with public cloud starting in 2013.
The talk will present how you can control the security debt you allow to be created and the plus/minuses of each type of approach.
Then the talk will present the new security framework/paradigm of EC in public cloud and how this has been put in place to address many of the real, measureable threats/risks of public cloud adoption.
Infosec Librarian.