Business-Led Development- an Extension of the Public Cloud

  • Written by Michael Bargury
You are currently viewing Business-Led Development- an Extension of the Public Cloud

To understand this headline better we need to have a better understanding of the traditional ways we think about Software-as-a-Service (SaaS) platforms and public cloud platforms. The difference lies in the starting point of these two solutions, while SaaS started as an extension of the corporate network, the public cloud started as an extension of the data center.

But just like Microsoft, Salesforce, Servicenow and other major SaaS providers started as a solution or a tool for a single use-case, they grew and became much more than that.

All the news straight to your inbox. Signup for Zenity’s weekly newsletter.

Don’t miss a single opportunity to get knowledge.

    In his latest DarkReading column, Michael Bargury, Zenity’s CTO, explains why we shouldn’t be thinking about SaaS platforms, cloud platforms and No-Code/Low-Code platforms differently. With the exponential growth of business developers (citizen developers), we should be treating No-Code/Low-Code platforms the same way we treat AWS, Azure GCP and other public cloud providers, and focus our security efforts on what is built using these platforms, by whom, how, and what are the associated security risks that come with it. As Michael writes “Thinking about low-code platforms as part of SaaS makes it difficult for us to see that a huge portion of our business applications are now being built by the business, outside of IT and outside of security control. To begin seeing the problem and figuring out our approach to it, we must shift our mindset to acknowledge low-code platforms as a part of the cloud and treat the applications on those platforms like we do any other application”

    About the Author

    Michael Bargury

    Michael is the Co-Founder and CTO of Zenity. He is an industry expert in cybersecurity interested in cloud, SaaS and AppSec. Prior to Zenity, Michael was a senior architect at Microsoft Cloud Security CTO Office, where he founded and headed security product efforts for IoT, APIs, IaC and confidential computing. Michael is leading the OWASP community effort on low-code/no-code security.

    Table of contents