Enough with the widget based, bolt on security practices
EpykLab leverages the the disciplines of DevSecOps to move security processes left to the very first stages of desing to ensure cyber survivability.
Security (as defined by NIST) is a state of being free from the conditions that cause asset loss with unnaceptable consequences. For far too long security has been pursued as spreadsheet of compliance objectives to check off. This is and always has been a woefully inadeuqate approach.
The time has come for a paradigm shift. No more mindless pursuit of compliance.
With a disciplined systems security engineering approach, companies can delivery demonstrably trustworthy applications and products and delight their customers and can withstand operating within varied and diverse battlespaces. Our objective is not to shield you from threat actors. They will always exist. Our objective is make their existance obsolete.
We start at the very beginning: system design, and move through product delivery, ensuring security is maintained every step of the way.
David Hoenisch
David initiated his professional journey within the domains of Linux and network administration, cultivating a strong technical foundation in IT operations. Motivated by a keen interest in cybersecurity, he pursued further education to transition into the field full-time. Over time, David has amassed extensive experience, specializing in the intricate landscape of cloud security, with a focus on safeguarding AWS and Azure cloud infrastructures. In his current role as a Lead Cloud Security Engineer, David assumes a pivotal position in crafting and implementing robust security frameworks tailored for workloads entrusted with processing Department of Defense (DoD) information. His tenure reflects a steadfast commitment to upholding the integrity, confidentiality, and accessibility of sensitive data assets, particularly within highly regulated environments.