Steve Riley researches and writes about various aspects of public cloud security. Mr. Riley researches how to design and deploy secure workloads in public infrastructure-as-a-service (IaaS) clouds and how best to secure the use of software-as-a-service (SaaS) offerings. He tracks the security and compliance capabilities of cloud service providers and monitors the threat and vulnerability landscape present in public cloud services. Related areas of research include cloud security access brokers (CASB), zero-trust network access (ZTNA), cloud data loss prevention (DLP), and container security in run-time.