In-depth cloud security technical training for our development technical leads and devop technical leads (and other as interested/appropriate).
This refers to organized/formal training classes, many of which are available online.
We have done, and continue to do a lot of learn-as-we-go training, but this needs to be completed with organized and comprehensive material that fills-in what we don't know, missed, or misunderstood or under appreciated.
Specific topics and classes need to be identified. At a minimum these need to include security management, including in-depth IAM management, for AWS and GCP.
Classes on architecting/designing for cloud security are also important/necessary.
┆Issue is synchronized with this Jira Story
┆Project Name: Team Redwood
┆Issue Number: RWD-22
┆Epic: NIH Security Best Practices Compliance
In-depth cloud security technical training for our development technical leads and devop technical leads (and other as interested/appropriate). This refers to organized/formal training classes, many of which are available online. We have done, and continue to do a lot of learn-as-we-go training, but this needs to be completed with organized and comprehensive material that fills-in what we don't know, missed, or misunderstood or under appreciated. Specific topics and classes need to be identified. At a minimum these need to include security management, including in-depth IAM management, for AWS and GCP. Classes on architecting/designing for cloud security are also important/necessary.
┆Issue is synchronized with this Jira Story ┆Project Name: Team Redwood ┆Issue Number: RWD-22 ┆Epic: NIH Security Best Practices Compliance