filmov
tv
How to Design a Least Privilege Architecture in AWS
Показать описание
Overview
Implementing a least privilege architecture can reduce risk and minimize disruptions by allowing only the minimum required authority to perform a duty or task. Adding network micro-segmentation also restricts east-west movement to reduce the number of vulnerable pathways to applications. When combined, these methods create a granular security environment that provides strong attack resistance.
In this webinar, SANS and AWS Marketplace will present examples of how to set up a least privilege stack, covering such key issues as where to start and what to prioritize. Additionally, they will present real-world use cases of least privilege stacks and effective micro-segmentation methods that have been deployed in Amazon Web Services (AWS).
Register today to be among the first to receive the associated whitepaper written by SANS analyst Dave Shackleford.
Attendees will learn how to:
Leverage the three pillars of least privilege as a control stack to ensure security in their AWS environment
Map user and service relationships to use identity and access management (IAM) as an isolation and segmentation technique
Apply micro-segmentation to set up multiple security zones and implement robust security controls
Enhance security posture by locking down the control plane, delivering continuous monitoring, and ensuring platform-as-a-service (PaaS) and container workload protection and monitoring
Speaker Bios
Dave Shackleford
Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.
Sagar Khasnis
Sagar Khasnis is a Partner Solutions Architect focusing on AWS Marketplace and Service Catalog. He has vast experience in helping enterprise customers in various technical roles. He is a technologist who is passionate about building innovative solutions using AWS services to help customers achieve their business objectives.
Implementing a least privilege architecture can reduce risk and minimize disruptions by allowing only the minimum required authority to perform a duty or task. Adding network micro-segmentation also restricts east-west movement to reduce the number of vulnerable pathways to applications. When combined, these methods create a granular security environment that provides strong attack resistance.
In this webinar, SANS and AWS Marketplace will present examples of how to set up a least privilege stack, covering such key issues as where to start and what to prioritize. Additionally, they will present real-world use cases of least privilege stacks and effective micro-segmentation methods that have been deployed in Amazon Web Services (AWS).
Register today to be among the first to receive the associated whitepaper written by SANS analyst Dave Shackleford.
Attendees will learn how to:
Leverage the three pillars of least privilege as a control stack to ensure security in their AWS environment
Map user and service relationships to use identity and access management (IAM) as an isolation and segmentation technique
Apply micro-segmentation to set up multiple security zones and implement robust security controls
Enhance security posture by locking down the control plane, delivering continuous monitoring, and ensuring platform-as-a-service (PaaS) and container workload protection and monitoring
Speaker Bios
Dave Shackleford
Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.
Sagar Khasnis
Sagar Khasnis is a Partner Solutions Architect focusing on AWS Marketplace and Service Catalog. He has vast experience in helping enterprise customers in various technical roles. He is a technologist who is passionate about building innovative solutions using AWS services to help customers achieve their business objectives.
0:04:40
0:10:54
0:05:33
0:00:12
0:27:48
0:11:07
0:08:49
0:12:04
2:07:02
0:08:09
0:00:08
0:12:20
0:00:15
0:06:42
0:01:24
0:14:19
0:00:41
0:10:59
0:00:18
0:02:06
0:00:08
0:00:24
0:46:15
0:00:58