Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Connecting organisation with Technology
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Hokuto Hoshi
March 08, 2023
Technology
350
0
Share
Connecting organisation with Technology
Hokuto Hoshi
March 08, 2023
More Decks by Hokuto Hoshi
See All by Hokuto Hoshi
AIとともに歩む情報セキュリティ / Information Security with AI
kanny
5
4.4k
開発も運用もビジネス部門も! クラウドで実現する「つらくない」統制とセキュリティ / Effortless Governance and Security Enabled by the Cloud
kanny
5
4.7k
転生CISOサバイバル・ガイド / CISO Career Transition Survival Guide
kanny
4
2.6k
Why Slack - 5 years of Cookpad with Slack
kanny
0
180
Security by builders - セキュリティ監視をクラウドで「つくる」 / Security by builders
kanny
7
2.8k
セキュリティ担当者から見た re:Invent と AWS Security Hub / Impression of re:Invent and AWS Security Hub
kanny
2
4.3k
自由でセキュアな環境のつくりかた / Building free and secure cloud environment
kanny
1
5.2k
事例でわかる、AWS 運用を支える サポート活用方法と エンタープライズサポートという選択 / AWS Enterprise Support and Cookpad
kanny
2
2.6k
AWS で加速する機械学習 / Accelerate Machine Learning with AWS
kanny
1
1.1k
Other Decks in Technology
See All in Technology
推し活エージェント
yuntan_t
1
790
Databricks Lakebaseを用いたAIエージェント連携
daiki_akimoto_nttd
0
140
"まず試す"ためのDatabricks Apps活用法 / Databricks Apps for Early Experiments and Validation
nttcom
1
170
不確実性と戦いながら見積もりを作成するプロセス/mitsumori-process
hirodragon112
1
190
VSCode中心だった自分がターミナル沼に入門した話
sanogemaru
0
920
Datadog で実現するセキュリティ対策 ~オブザーバビリティとセキュリティを 一緒にやると何がいいのか~
a2ush
0
190
OpenClawでPM業務を自動化
knishioka
2
390
15年メンテしてきたdotfilesから開発トレンドを振り返る 2011 - 2026
giginet
PRO
2
280
Oracle Cloud Infrastructure(OCI):Onboarding Session(はじめてのOCI/Oracle Supportご利⽤ガイド)
oracle4engineer
PRO
2
17k
【PHPカンファレンス小田原2026】Webアプリケーションエンジニアにも知ってほしい オブザーバビリティ の本質
fendo181
0
120
GitHub Actions侵害 — 相次ぐ事例を振り返り、次なる脅威に備える
flatt_security
13
7.5k
出版記念イベントin大阪「書籍紹介&私がよく使うMCPサーバー3選と社内で安全に活用する方法」
kintotechdev
0
150
Featured
See All Featured
Agile Actions for Facilitating Distributed Teams - ADO2019
mkilby
0
170
ReactJS: Keep Simple. Everything can be a component!
pedronauck
666
130k
How to build a perfect <img>
jonoalderson
1
5.3k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
231
22k
Marketing Yourself as an Engineer | Alaka | Gurzu
gurzu
0
170
Statistics for Hackers
jakevdp
799
230k
Effective software design: The role of men in debugging patriarchy in IT @ Voxxed Days AMS
baasie
0
280
svc-hook: hooking system calls on ARM64 by binary rewriting
retrage
2
200
Save Time (by Creating Custom Rails Generators)
garrettdimon
PRO
32
2.7k
WCS-LA-2024
lcolladotor
0
510
The Illustrated Children's Guide to Kubernetes
chrisshort
51
52k
Unsuck your backbone
ammeep
672
58k
Transcript
ςΫϊϩδʔͰͭͳ͙৫ Hokuto Hoshi CTO & CISO, Cookpad Inc.
[email protected]
2023/03/08
ITmedia DX Summit vol.15
• ΫοΫύουגࣜձࣾ CTO ݉ CISO (2023/01 ~) • ηΩϡϦςΟΤϯδχΞͱͯ͠ೖࣾޙɺ
SRE (Site Reliability Engineer) ͱͯ͠αʔϏεͷ Πϯϑϥ։ൃɾߏஙɾӡ༻ʹैࣄɻٕज़ຊ෦ͳͲΛܦͯ 2019ΑΓίʔϙϨʔτΤϯδχΞϦϯά෦ ຊ෦ɻ 2020ΑΓւ֎ຊࣾ (ΠΪϦε, ϒϦετϧ) ʹग़ɺ 2023ΑΓݱ৬ ే (HOSHI, HOKUTO)
ΫοΫύουʹ͍ͭͯ: https://speakerdeck.com/cookpadhr/cookpad-introduction
ΫοΫύουͱใγεςϜ • ͱͱ֤෦ॺ͕ಠࣗͷγεςϜΛબఆ͠ӡ༻ • ܦӦํʹͬͯάϩʔόϧԽۀলྗԽ͕ٸʹ • 2016ΑΓͦΕ·ͰͷใγεςϜΛ౷߹ɺஔ͖͑ͨ • αʔϏε͚ͩͰͳ͘ɺશ͕ࣾ࣋ͭ՝ΛςΫϊϩδʔͰ ղܾ͢ΔνʔϜͱͯ͠ίʔϙϨʔτΤϯδχΞϦϯά෦
Λઃཱ
ίʔϙϨʔτΤϯδχΞϦϯά෦ • શࣾͷੜ࢈ੑΛςΫϊϩδʔͷྗͰ࠷େԽ͢Δ͜ͱ͕ ϛογϣϯ ◦ શࣾһ͕ςΫϊϩδʔΛਖ਼͘͠ཧղ͠ ׆༻Ͱ͖Δ৫Λࢦ͍ͯ͠Δ • ຊͱΠΪϦεʹ·͕ͨΔνʔϜ
ݱࡏͷγεςϜ֓ཁ
γεςϜઃܭɾબఆͷ্Ͱͷݪଇ • શͯͷγεςϜ API Ͱଓ͞ΕΔ ◦ ۀࣗಈԽͷ࠷ॏཁͳ෦ɻඞཁͳσʔλ͕ඞཁͳλΠϛϯάͰ ࣗಈಉظ͞Ε͍ͯΔ͚ͩͰղܾ͢Δଟ͍ ◦
ͦͷޙ֤γεςϜͷಘҙΛ׆͔ͯ͠ରԠͰ͖Δ • શͯͷγεςϜάϩʔόϧڥʹରԠ͍ͯ͠Δ ◦ ϩʔΧϧͳ๏ରԠͳͲΛओ؟ʹͨ͠ͷআ͘ • ϚελʔσʔλҰͭʹ ◦ ෳγεςϜʹಉ͡ίϯςΩετͷϚελʔ͕͔Εͳ͍Α͏ʹ
None
3ͭͷϓϥοτϑΥʔϜγεςϜ • Workday ◦ ERP ͱͯ͠ར༻ɻࢧग़ܾࡋͳͲҰ෦ϫʔΫϑϩʔ ୲͏ • ServiceNow ◦
ϫʔΫϑϩʔ͓ΑͼλεΫཧγεςϜͱͯ͠ར༻ • Salesforce ◦ SFA ͓Αͼ CRM ͱͯ͠ར༻
पลγεςϜ • Microsoft Azure Active Directory ◦ σΟϨΫτϦ, SSO ͱͯ͠ར༻
• DocuSign ◦ ܖͷͨΊͷిࢠೀҹʹར༻ • Slack ◦ શࣾͷίϛϡχέʔγϣϯπʔϧ
σʔλ࿈ܞج൫ • Informatica Cloud ◦ ϩʔίʔυ։ൃʹΑΔσʔλ࿈ܞج൫ͱͯ͠ར༻ • ࣗࣾج൫ ◦ ϝϯςφϯεੑͷ໘ͳͲ͔ΒҰ෦࿈ܞΛ
AWS ্Ͱࣗࣾ։ൃ ◦ AWS Step Functions, AWS Lambda Λ࣮ߦج൫ͱͯ͠ར༻
ۀࣗಈԽͷ࣮ྫ
ೖࣾॲཧ • ਓࣄ୲ऀ͕ೖࣾऀͷใΛ Workday ʹೖྗ • ೖࣾऀ͕ࣗͷใΛ Workday ʹೖྗ •
ر͢ΔΞΧϯτ໊ͳͲ • Workday ্Ͱ࠾༻ॲཧ͕ྃ͢Δͱ Azure AD ʹ ΞΧϯτ࡞ • ଞγεςϜʹΞΧϯτ࡞
None
ୀ৬ॲཧ • Workday ্Ͱୀ৬ͷਃ • λΠϛϯάʹ߹ΘͤͯϔϧϓσεΫ͕ΞΧϯτͷແޮԽ • ແޮԽΛτϦΨʔʹ֤ͯ͠γεςϜΞΧϯτͷࣗಈআ ◦ खಈͰߦΘͳ͚ΕͳΒͳ͍ॲཧͷλεΫ࡞
退職処理を可能な限り⾃動化する - クックパッド開発者ブログ https://techlife.cookpad.com/entry/2019/10/10/113000
None
֤छਃ • γεςϜΞΧϯτ, උ, ৽نܖ, etc • ServiceNow ʹूɺ֘͢ΔΞΠςϜΛ୳ͯ͠
ਃ͢Δ͚ͩ • ঝೝϑϩʔޙͷ୲෦࡞ۀ·ͰεςʔλεԽ
None
ܖॻߋ৽ͷࣗಈΞϥʔτ • ๏෦ͷλεΫཧʹར༻ • ServiceNow ʹอ࣋͞ΕͨܖਃΛͱʹ,ߋ৽͕ ͍͍ۙͮͯΔܖΛࣗಈͰΞϥʔτ • ΞϥʔτΛड͚ͯରԠΛܾΊΔ͜ͱ͕Ͱ͖Δ
νʔϜମ੍ • ݱঢ়3໊ ◦ ϏδωεΞφϦετ2໊, ΤϯδχΞ1໊ ◦ Ұ෦࣮αʔυύʔςΟϕϯμʔʹҕୗ • ݱ෦ͷώΞϦϯά,
ϓϩηεվળͷఏҊ͔Β࣮ ·ͰΛߦ͏
શͯΛΧόʔ͢Δʹݶք͕…
ϊʔ/ϩʔίʔυπʔϧʹΑΔݱͰͷࣗಈԽ • Zapier Λར༻ ◦ ΫϥυαʔϏεಉ࢜Λͭͳ͙ϋϒ ◦ ίωΫλͷछྨ͕๛ ◦ GUI
ʹΑΔ։ൃ͕Մೳ ◦ ࣮ߦλεΫʹԠͨ͡՝ۚମܥ ▪ খ͍ࣗ͞ಈԽʹରԠ͍͢͠ ▪ શࣾһʹղ์͠୭Ͱ͑ΔΑ͏ʹ
ࣗಈԽͷྫ • Google Sheet Λࢹͯ͠มߋ͕͋ͬͨΒ Slack ʹ௨ • Twitter ͷಛఆͷߘΛ
Slack ʹߘ • Slack ͔Β ServiceNow ͷ͍߹ΘͤνέοτΛىථ • ToDo ϦετΛ Google Sheet ʹసه
Twitter ͷԠΛ·ͱΊͯߘ
None
ݱʹΑΔࣗಈԽͷϝϦοτ, σϝϦοτ • ϝϦοτ ◦ νʔϜ͕ରԠ͖͠Εͳ͍ࡉ͔ͳࣗಈԽΛ࣮͘ݱͰ͖Δ ◦ ۀϓϩηεʹ͍ͭͯࣗͰߟ͑Δ͖͔͚ͬΛ࡞Δ͜ͱ͕Ͱ͖Δ • σϝϦοτ
◦ ͕࠶ݱͳ͘૿͑Δͱཧ͕͘͠ͳΔ ▪ ΞΧϯτແޮԽ࣌ͷରԠɺσόοάͳͲ ◦ ຊདྷγεςϜଆͰରԠ͖͢͜ͱΛݟಀ͢Մೳੑ͕͋Δ
ࣗಈԽʹ͋ͨͬͯҙ͍ࣝͯ͠Δ͜ͱ
1. ݱͱͱʹͭ͘Δ • ʮਓؒʹγεςϜΛ߹ΘͤΔͷͰͳ͘ɺγεςϜʹਓ͕ؒ ߹ΘͤΔʯਖ਼͍͠ • ͨͩ͠ʮγεςϜ͕ఆٛͨ͠ϓϩηεΛԡ͚͠Δʯ ͜ͱͰͳ͍ ◦
ӅΕͨύονϫʔΫΛେྔʹ࢈Ή͜ͱʹͭͳ͕Δ • ͦΕͧΕͷγεςϜΛཧղ͠ɺݱ෦ͱΑͯͭ͘͘͠Δ
2. γεςϜͷ࣋ଓੑΛߟ͑Δ • ڊେͳαʔϏεɺෳࡶͳߏֶशίετߴ͍ ◦ ͔͔Δਓख૿͑Δ • ΧελϚΠζɺ։ൃ࣌ͷϝϯςφϯεੑΛߟྀ͢Δ ◦ ϊʔίʔυɺϩʔίʔυͷຐ۸ԽඇৗʹΑ͋͘Δ
◦ ʮָ͠ΜͰ։ൃʹऔΓΊΔ͔ʯॏཁͳཁૉ
3. ࣗΒඈͼࠐΉ • ϓϩηεձࣾ৫ͷҰ෦ɺϓϩηεվળ ৫ͮ͘Γʹ͍͠ ◦ ؙ͛Ͱ͏·͍͔͘ͳ͍ ◦ ͕ࣗϢʔβʔɺͦͯ͠ཧऀͱͯ͠ߟ͑Δ͜ͱ͕
ॏཁ
·ͱΊ • API ʹΑΔଓ͕ΫοΫύουͷۀࣗಈԽͷେ͖ͳϙΠϯτ • ࣮ࡍͷϫʔΫϑϩʔΛҙࣝ͠ͳ͕ΒγεςϜԽ • ิॿαʔϏεΛ׆͔ͯ͠ݱͰͷۀࣗಈԽ “खஈ” ͮ͘Γ
͓͜ͳ͏ • ձࣾͮ͘Γͷࣄऀͱͯ͠औΓΉ
PR • ΤϯδχΞϦϯάͰ৫՝Λղܾ͢Δ ίʔϙϨʔτΤϯδχΞΛ࠾༻͍ͯ͠·͢ • https://cookpad.careers
Fin.
SiteGround - Reliable hosting with speed, security, and support you can count on.
kanny
yuntan_t
daiki_akimoto_nttd
nttcom
hirodragon112
sanogemaru
a2ush
knishioka
giginet
oracle4engineer
fendo181
flatt_security
kintotechdev
mkilby
pedronauck
jonoalderson
danielanewman
gurzu
jakevdp
baasie
retrage
garrettdimon
lcolladotor
chrisshort
ammeep
![ςΫϊϩδʔͰͭͳ͙৫ Hokuto Hoshi CTO & CISO, Cookpad Inc. [email protected] 2023/03/08](https://files.speakerdeck.com/presentations/b91b6d06f2e74992934aa8403001f970/slide_0.jpg){kind=link}
