Threat Stack Blog and Cloud Security News

Continuous security monitoring for your cloud.

Chris Gervais

As Threat Stack's head of Engineering, Chris is passionate about building, not only a rock solid, high-performance product, but also a team of elite engineers, industry best processes, and a culture that attracts the best talent. Prior to Threat Stack, Chris held senior positions at lifeIMAGE, Enservio, Partners Healthcare, Inc., Inflexxion, Inc., and VIS Corporation, where he was responsible for engineering, technical operations, and technology strategy for cloud platforms.

Recent Posts

Why Docker Can’t Solve All Your Problems in the Cloud

by Chris Gervais , posted in Docker, Containers, Cloud Infrastructure

Docker Cloud Blog Banner.png

Docker and other container services are appealing for good reason. They are lightweight and flexible. For many organizations, they enable the next step of platform maturity by reducing the needs of a runtime to the bare essentials (at least, that's the intent).

When you dig into the benefits afforded by containers, it’s easy to see why so many companies have started projects to:

  • Containerize their apps and supporting services
  • Achieve isolation
  • Reduce friction between environments
  • Potentially improve deployment cycle times

The software development pattern of small things, loosely coupled, can go even further with an architecture built around containerization. We’re big fans at Threat Stack, and continue to invest in supporting our customers who rely on them. In fact, we recently announced official CoreOS support for our agent.

However, we have discovered that there is no shortage of misunderstandings about Docker (no surprise given the rapid growth and pace of change) and other container services in terms of:

  • How their benefits are realized
  • The impact on infrastructure/operations
  • The implications on overall SDLC and Ops processes

Containers certainly offer plenty of benefits, and it makes good sense to explore whether and how they could work for your organization. But it is also a good idea to take off the rose-colored glasses first and approach this technology realistically.

Read More [fa icon=long-arrow-right"]

Jun 27, 2017 4:52:32 PM

[fa icon="comment"] 0 Comments

Compliance in the Cloud: Q&A Webinar Recap

by Chris Gervais , posted in Cloud Security, Compliance in the Cloud, Regulatory Compliance Strategy, Compliance Audit

Compliance Webinar Recap Blog Banner.png

On April 25th, I had the pleasure of speaking with Ryan Buckner, Principal at Schellman & Company and Kevin Eberman, Director of Ops at MineralTree during a webinar on compliance in the cloud.

Using the cloud as our lens, we discussed the ways in which companies can better understand and navigate compliance. You can view the entire webinar or read our recap below.

Read More [fa icon=long-arrow-right"]

Apr 26, 2017 3:34:37 PM

[fa icon="comment"] 0 Comments

How to Prepare Your Company Culture for Its First Security Hire

by Chris Gervais , posted in Cloud Security, Cloud Security Awareness and Training, Cloud Security Culture

First Security Hire Blog Banner.png

We often think of security as a technology problem. But at its core, security is and always has been a people problem. You can have the fanciest security tools up and running, but if your organization is full of happy clickers, you still have a problem on your hands.

For this reason, the more that security is a part of your company culture, the better off you will be when it comes to standing up to today’s threats.

Read More [fa icon=long-arrow-right"]

Mar 17, 2017 1:50:49 PM

[fa icon="comment"] 0 Comments

5 Tips to Streamline Your Security Team

by Chris Gervais , posted in Cloud Security, SecOps, Cyber Security, Optimizing Security Operations, Optimizing Security Teams

Streamline Security Team Blog Banner.png

If you’ve ever hired security pros, then you know the current talent shortage is no joke. A recent Computerworld survey found that compensation for security specialists is growing faster than for any other role in IT (up 6.4% year-over-year in average total compensation), and the competition for talent is fierce. Finding the right talent can be a lengthy process, leaving your security hopes and dreams in limbo.

So, what’s an organization to do? Many companies are working hard to streamline security operations and answer the talent shortage with changing tactics to match the changing role of security. Organizations need to maximize the value of their security hires now more than ever. Below, we’ll cover five tips that can help you get the most out of your security team’s time and talents.

Read More [fa icon=long-arrow-right"]

Mar 3, 2017 1:45:52 PM

[fa icon="comment"] 0 Comments

Ending Alert Fatigue: Threat Stack and VictorOps On Modern-Day Security and Incident Management

by Chris Gervais , posted in Cloud Security, Webinar, Alert Fatigue, Security Alert Management, Security and Incident Management


Alert fatigue is a very real issue that security, ops, and dev teams are dealing with today. But how do you know if alerts are burning you out? And how can others on your team recognize it? More often than not, alert fatigue flies under the radar until it’s too late — critical issues start to pass by unnoticed and our adversaries get the upper hand.

Read More [fa icon=long-arrow-right"]

Jul 28, 2016 10:55:00 AM

[fa icon="comment"] 0 Comments

Jul 15, 2016 9:48:01 AM

[fa icon="comment"] 0 Comments

Know Your Cloud to Defend Your Cloud, Part 1: Knowing

by Chris Gervais , posted in Cloud Security, Cloud Knowledge, Cloud Defense


I recently had the opportunity to participate in a webinar with Scott Ward from Amazon Web Services and Arup Chakrabarti from PagerDuty, and much of our conversation centered on the objective that just about everyone is struggling with: going fast, securely.

Read More [fa icon=long-arrow-right"]

Jun 30, 2016 7:19:27 PM

[fa icon="comment"] 0 Comments

Scaling Quickly & Securely: Achieving Security & Compliance in AWS

by Chris Gervais , posted in Cloud Security, Webinar, Compliance, AWS, High-Velocity Cloud Security


On Tuesday, June 21, I teamed up with Scott Ward, Solutions Architect at AWS, and Arup Chakrabarti, Director of Engineering at PagerDuty, to deliver a webinar about scaling quickly and securely in AWS. The discussion was lively enough to keep beach-and-BBQ dreams at bay for an hour or so on a humid Wednesday in Boston.

Read More [fa icon=long-arrow-right"]

Jun 22, 2016 2:16:57 PM

[fa icon="comment"] 0 Comments

Mar 16, 2016 9:08:43 AM

[fa icon="comment"] 0 Comments

Subscribe via email:

Posts by Topic

see all