Danielle Sudai is the Security Operations Manager at Deliveroo, where she has worked since May 2021. With a diverse background in cybersecurity, Danielle has held roles at Microsoft, HSBC, and served in the Israeli Intelligence Corps.
Her experience spans various aspects of security, including DevSecOps, cloud security engineering, and now leading security operations and automation centre of excellence at one of the world's leading food delivery platforms.
Danielle will be presenting at DTX London, taking place on 2nd and 3rd October at ExCel London.
The following interview has been edited for length and clarity.
Q: What will you be speaking about at DTX London?
At DTX London, I'll be leading a session titled "Unmasking Hidden Threats and Enhancing Visibility Across Our Cloud Environments". We'll explore how to leverage the visibility we gain from our cloud infrastructure and metadata to identify misconfigurations and vulnerabilities. This knowledge is crucial for mitigating and alerting potential cybersecurity breaches.
The session will cover the fundamentals of cloud security posture management (CSPM) and how to use these tools effectively. I'll be sharing insights from my experience co-developing a CSPM solution in a previous role, which gave me a deep understanding of the areas we need to focus on and how to leverage cloud infrastructure's metadata best.
We'll discuss measuring our security posture, identifying our biggest threats, prioritising immediate actions, and setting effective and timely policies. My goal is to provide knowledge and simplify this technology, giving attendees a clear direction on enhancing their cloud security.
Q: Why should people listen to your session at DTX London?
This session is designed to be valuable for professionals at all levels of technical expertise, from all security defence lines. Having worked across all three lines of defence myself – from compliance and risk management to security engineering and product security and now in security operations – I bring a comprehensive perspective.
We'll start with the basics, defining key terms and concepts. I'll provide real-life examples to help attendees understand what misconfigurations look like in practice and how to analyse threats effectively. Even if you already have a threat landscape, we'll explore how to implement controls to identify potential breaches more efficiently and accurately.
Further, I'll address a common issue in our industry: the rush to adopt new security solutions without fully understanding them. By simplifying these complex technologies and providing practical insights, I aim to empower attendees to make more informed decisions about their security strategies.
Q: If you could offer three takeaways from your speaking session, what would they be?
1. Understanding key concepts: We'll define and differentiate between risk, threat, and vulnerability. We'll also explore the fine line between compliance and security and how these need to collaborate.
2. Identifying challenges and barriers: We'll discuss the obstacles that prevent us from identifying misconfigurations, shadow IT features, and behavioural anomalies. We'll examine industry breaches caused by misconfigurations to understand the "why" behind our focus on visibility.
3. Leveraging technology effectively: We'll explore CSPM technology and how it can support us in defining potential breaches. We'll discuss both vendor solutions and native cloud capabilities, emphasising the importance of understanding your needs before rushing to purchase software.
Q: You have an interesting background, including service in the Israeli Intelligence Corps. How has this experience shaped your approach to cybersecurity?
My time in the Israeli Intelligence Corps was truly a privilege and an eye-opening experience. It taught me how technology can protect people's lives, which you don't get to do daily. This experience brought me into the cybersecurity industry.
I've carried this sense of purpose throughout my career, whether it was working at Microsoft to secure services used worldwide, at HSBC protecting one of the world's largest banks, or now at Deliveroo where we're safeguarding not just our business, but also our customers, restaurants, and employees.
This background has given me a unique perspective on the importance of security across different domains and industries. It's what keeps me interested and motivated in everything I do.
Q: What attracted you to join Deliveroo?
Even before the interview, I was impressed by the company's innovative approach. Coming from a background where eating out was seen as a privilege, I was fascinated by the thought and effort behind Deliveroo's interface and its commitment to maintaining a strong reputation in the last-mile delivery industry.
Since joining, I've been constantly learning and growing. The collaborative and innovative environment at Deliveroo drives you to do more, initiate projects, and strive for continuous improvement.
Working at Deliveroo is making me a better person. The company's vision, mission, and values align with my own, and the vibrant, collaborative workplace culture is truly energising.
Q: Have you attended DTX before, and if so, why should others attend?
Yes, I've been fortunate to be a panelist twice in the last three years at DTX London. Others should attend because DTX provides a unique opportunity to learn from a diverse range of security professionals. The speakers share invaluable insights from their own experiences, enabling attendees to gain new perspectives and challenge their notions of security.
For instance, I attended a fascinating fireside chat with Jenny Radcliffe last year about physical security vulnerabilities. It highlighted how security isn't just about technology – it's also about understanding and addressing human vulnerabilities.
These sessions often challenge existing ideas and policies, and I always leave feeling inspired to solve new problems and explore how I can apply these insights in my organisation.
Q: What are your hopes for DTX this year? What are you hoping to learn?
I'm looking forward to learning new aspects from other industry professionals’ experiences in their roles. Even as a speaker, I see these events as valuable learning opportunities. I'm particularly interested in hearing about new approaches to recent emerging threats, and innovative solutions that other organisations are implementing.
I want to emphasise the importance of continuous learning and engagement in our field. The cybersecurity landscape constantly evolves, and events like DTX are crucial for staying up-to-date and connecting with the broader security community.
I encourage all attendees to make the most of this opportunity. Be present, ask questions, and contact speakers through LinkedIn or email after the event.
Lastly, I want to remind everyone that security is a collaborative effort. Your perspective is valuable whether you're just starting in the field or a seasoned professional. Share your experiences, challenges, and successes. By learning from each other, we can collectively improve our security practices and better protect our organisations and users.
Danielle Sudai will be speaking at DTX London, taking place on 3rd and 4th October at ExCel London. For more information and to register – for free – please visit: https://dtx-london-2024.reg.buzz/