Both of us work on security within Google Cloud. Can you tell us a bit more about who we'll be talking to? And of course, you're a special guest star today because we also have a super cool interview today. So the nosebleed should be minimal unless there's an emergency outside my window. And the clarinet music has mostly stopped from the other room. “Clarinet Multiphonics” by jfcharles of.Max is working on Stack Chat at Home (coming soon!), BeyondCorp in a Bottle, as well as Ring Fit Adventure and Just Dance video games. This week, Max talks about 2-step verification, security keys, and why you need them! What’s something cool you’re working on? BeyondCorp 6: Building a Healthy Fleet paper.Migrating to BeyondCorp: Maintaining Productivity While Improving Security paper.BeyondCorp: Design to Deployment at Google paper.BeyondCorp: A New Approach to Enterprise Security paper.A simple, secure way for teams to meet and work: G Suite Essentials is here blog.GCP Podcast Episode 192: Cloud Bigtable with Billy Jacobson podcast.Using Bigtable’s monitoring tools, meant for a petabyte-scale database, to… make art blog.He is responsible for creating and delivering Google Cloud’s security message, spanning platforms, applications, and connected devices. Rob Sadowski is the Trust & Security Product Lead for Google Cloud at Google. Rob points out that this is a great solution, not only for employees who find themselves working from home due to the current global climate, but also for freelance or contract workers who only need access to parts of the internal system. Companies can define access rules for each user, setting trust levels and parameters for who can access what parts of the network. Rob stresses how complicated the system was to build from scratch and emphasizes that with BeyondCorp Remote Access, companies don’t have to build a whole new system.īeyondCorp Remote Access offers automatic scaling and world-wide points of presence for a fast user experience anywhere in the world. Codifying your employees’ needs and preferences, detailing the levels of trust you’ll allow, and thinking ahead about where in the world your employees will be when they access the system are some of their tips. Max and Rob explain the steps Google went through to create such a state-of-the-art security program and give tips on how companies can build something similar. With this information, if a user accidentally exposes the system to malware, for example, access can be revoked quickly. In addition to the thorough authentication process, BeyondCorp continues to monitor device metadata during use as part of the system’s decision to continue to trust (or not trust) a user. Users are authenticated per session and per device to give access only to the specific person, on the specific device, for the specific job each time. BeyondCorp is Google’s answer to allowing employees to use company networks on any device while outside the building in a way that is both secure and efficient. On this episode of the podcast, our old pal Mark Mirchandani is joined by special guest host Max Saltonstall to talk trust and security with fellow Googler Rob Sadowski.