And I’m not saying that these cloud environments don’t offer some type of visibility but it is nothing compared to having something within your four walls. MC: I would say the top one is lack of visibility. TC: What would you say are the top challenges that security architects face when it comes to shifting to the cloud and not having that one-to-one migration between what on-premises and the cloud? And that’s one of the main things that drove me to Soha here is I want to be part of that, I want to be involved in that transformation, and so I was very primed to play a very big part in that revolution, so to speak.
Soha allows for organizations to maintain that sense of governance and visibility while still eliminating many of those risks for exposing an application on the internet. Today, as we start moving to the new frontier of on-premises versus cloud organizations need to also adopt a new methodology for securing applications or environments that, one, they don’t have any control over, and two, have little visibility to the interworkings of what’s going on. You have to deal with high-profile security, virtual networking - those types of things - segregation of duties - and it required a paradigm shift in the way security is accomplished. And as we’ve now come to find out you cannot simply just convert physical machines to virtual and still maintain the same controls Previously - sometime ago, during the wave of migration from physical to virtual there was a big push to replicate security controls one-to-one. I took that to heart and started to have more and more conversations and I started to realize that this is the very beginning of a revolution. However, as Walmart shifted to begin to start adopting cloud utilization and even potentially including some sensitive applications and datasets it was clear that Soha would be able to effectively allow Walmart to burst into these cloud environments without assuming the majority of the risks involved with exposing an application to the internet. And I realized that their solution addressed many of the challenges that I was currently facing exposing internal applications to my BYOD users. It was at Walmart where I was first introduced to Soha almost a year ago.
Mark Carrizosa : Most recently I was a principle architect at Walmart e-commerce, and I was responsible for the security architecture and the security development of the entire ecommerce platform across the globe.
Talkin’ Cloud: Can you tell me a little bit about your previous role and what attracted you to Soha? Talkin’ Cloud caught up with him to discuss his role, the company and why approaches like Soha should have partners take note. “The Soha service enables an enterprise customer to provide employee- or partner-authorized access to an internal company-facing, not Internet-facing, application that has been set up on a public cloud service.”Īccording to Soha, Carrizosa will not only help secure Soha as a business, but also act as a voice of the customer out in the field, given his experience as an enterprise security practitioner. “Soha is a multi-tenant cloud service that functionally replaces the corporate LAN and WAN and provides access to an enterprise application that has been implemented in the cloud rather than in the private enterprise’s datacenter,” explained Peter Christy and Adrian Sanabria, analysts with 451 Research, in a recent brief. This week cloud security upstart Soha Systems snagged a key new hire in Mark Carrizosa, formerly a security architect at Walmart (WMT), to lead as vice president of security.īacked by the likes of venture heavyweights like Andreessen-Horowitz and Menlo, Soha is hoping to reshape the way enterprise application access is granted in cloud environments.