Navigating ISO 27001 and Multi-Cloud with Security Architect Gabor Sivók

Update: 2025-11-04

Description

In this episode, Gabor Sivók, Cloud Security Architect at Queue-it, shares a practical look at what it takes to secure large-scale systems in today’s cloud environments. He walks through Queue-it’s journey to ISO 27001 certification, the real trade-offs between security and performance, and how security practices adapt in multi-cloud setups. Gabor also weighs in on the growing role of AI in security operations—and why the best security work often stays invisible. A grounded conversation for anyone working at the intersection of reliability, scalability, and security.

Episode page

---

(00:00 ) - Intro & welcome to the Smooth Scaling Podcast

(02:58 ) - AWS GameDay: Security through gamification

(06:31 ) - The journey to ISO 27001 certification

(09:34 ) - Balancing scalability, reliability & security

(12:49 ) - What TLS really means for secure communication

(15:29 ) - Moving from AWS to multi-cloud security

(18:31 ) - How AI is changing cloud security

(20:27 ) - The endless game of attackers vs. defenders

(22:44 ) - Advice for starting a security career early

(24:11 ) - Wrap-up & closing message

Gabor Sivók is a Cloud Security Architect at Queue-it, where he leads security efforts across the R&D organization. With a background in infrastructure and compliance, he played a key role in Queue-it’s ISO 27001 certification and now focuses on securing multi-cloud environments at scale. Gabor works closely with platform engineering teams to embed security into architecture decisions while balancing performance, resilience, and risk. He’s also an active participant in the security community, keeping pace with emerging threats and tooling through Discord, Reddit, and bug bounty networks.

This podcast is hosted by José Quaresma, researched by Joseph Thwaites and produced by Perseu Mandillo.