Mid-Atlantic CIO Forum

Similar documents
What s New at AWS? looking at just a few new things for Enterprise. Philipp Behre, Enterprise Solutions Architect, Amazon Web Services

What s New at AWS? A selection of some new stuff. Constantin Gonzalez, Principal Solutions Architect, Amazon Web Services

AWS 101. Patrick Pierson, IonChannel

AWS Data Security Security Update

Expected Learning Outcomes Introduction To AWS

Energy Management with AWS

Store, Protect, Optimize Your Healthcare Data in AWS

Certificate of Registration

Architecting for Greater Security in AWS

Welcome and Introductions. Belegu Rinon Imsand Matthias

AWS cloud terminology

About Intellipaat. About the Course. Why Take This Course?

Splunk & AWS. Gain real-time insights from your data at scale. Ray Zhu Product Manager, AWS Elias Haddad Product Manager, Splunk

HPE Digital Learner AWS Certified SysOps Administrator (Intermediate) Content Pack

Rinon Belegu Legendary IT (CEO and Founder), Digicomp (Technical-Lead AWS and Veeam)

Amazon Linux: Operating System of the Cloud

AWS Well Architected Framework

AWS Solution Architect Associate

Amazon Web Services. Block 402, 4 th Floor, Saptagiri Towers, Above Pantaloons, Begumpet Main Road, Hyderabad Telangana India

Analytics"in"the"Cloud"from"AWS

Amazon Web Services 101 April 17 th, 2014 Joel Williams Solutions Architect. Amazon.com, Inc. and its affiliates. All rights reserved.

Deep Dive on AWS CodeStar

Architecting for HIPAA Security and Compliance on Amazon Web Services

Security Aspekts on Services for Serverless Architectures. Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance

Microservices on AWS. Matthias Jung, Solutions Architect AWS

Serverless Computing. Redefining the Cloud. Roger S. Barga, Ph.D. General Manager Amazon Web Services

Level Up Your CF Apps with Amazon Web Services

Werden Sie ein Teil von Internet der Dinge auf AWS. AWS Enterprise Summit 2015 Dr. Markus Schmidberger -

Joakim Stolpe AWS Nordics

Security & Compliance in the AWS Cloud. Amazon Web Services

Security & Compliance in the AWS Cloud. Vijay Rangarajan Senior Cloud Architect, ASEAN Amazon Web

Amazon Web Services Training. Training Topics:

Amazon Web Services (AWS) Solutions Architect Intermediate Level Course Content

LINUX, WINDOWS(MCSE),

Best Practices for Cloud Security at Scale. Phil Rodrigues Security Solutions Architect Amazon Web Services, ANZ

Crypto-Options on AWS. Bertram Dorn Specialized Solutions Architect Security/Compliance Network/Databases Amazon Web Services Germany GmbH

Getting Started with AWS Security

Amazon Web Services (AWS) Training Course Content

Grischa Baelden AWS Public Sector Account Manager, DACH. Brendan Bouffler. Worldwide Research and Technical Computing Lead

High School Technology Services myhsts.org Certification Courses

AWS Practioner Study Guide Content by Jeanne Boyarsky and Janeice DelVecchio

Getting started with AWS security

Who done it: Gaining visibility and accountability in the cloud

DevOps Tooling from AWS

AWS IoT Overview. July 2016 Thomas Jones, Partner Solutions Architect

Securing Microservices Containerized Security in AWS

Containers or Serverless? Mike Gillespie Solutions Architect, AWS Solutions Architecture

Managing and Auditing Organizational Migration to the Cloud TELASA SECURITY

Amazon Web Services. For Government, Education, and Nonprofit Organizations

AWS Solutions Architect Associate (SAA-C01) Sample Exam Questions

AWS Webinar. Navigating GDPR Compliance on AWS. Christian Hesse Amazon Web Services

Compliance and Security in a Cloud-First Era

At Course Completion Prepares you as per certification requirements for AWS Developer Associate.

Microsoft Best Practices on AWS


AWS Security Overview. Bill Shinn Principal Security Solutions Architect

AWS Agility + Splunk Visibility = Cloud Success. Splunk App for AWS Demo. Laura Ripans, AWS Alliance Manager

Training on Amazon AWS Cloud Computing. Course Content

Security: Michael South Americas Regional Leader, Public Sector Security & Compliance Business Acceleration

Deliver High- quality Streaming Media Globally with AWS and Wowza

Enroll Now to Take online Course Contact: Demo video By Chandra sir

TECHNICAL WORKBOOK. PCI Compliance in AWS A NITIA N. Report Date: 2 July 2018 Jordan Wiseman, QSA Andrew Plato

Herzlich Willkommen. zum AWS Enterprise Summit Frankfurt. 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

ActiveNET. #202, Manjeera Plaza, Opp: Aditya Park Inn, Ameerpetet HYD

Getting started with AWS security

Cloud Computing. Amazon Web Services (AWS)

What to expect from the session Technical recap VMware Cloud on AWS {Sample} Integration use case Services introduction & solution designs Solution su

AWS Administration. Suggested Pre-requisites Basic IT Knowledge

Microservices Architekturen aufbauen, aber wie?

8/3/17. Encryption and Decryption centralized Single point of contact First line of defense. Bishop

Building Secure and Scalable Mobile Apps on AWS

AWS Mobile Services 7/7/2014. Marco Argenti, Vice President

VMware Cloud on AWS The Next Generation Hybrid Cloud Architecture

Title: Planning AWS Platform Security Assessment?

AWS Landing Zone. AWS User Guide. November 2018

Cloud Security Strategy - Adapt to Changes with Security Automation -

ARCHITECTING WEB APPLICATIONS FOR THE CLOUD: DESIGN PRINCIPLES AND PRACTICAL GUIDANCE FOR AWS

INTRO TO AWS: SECURITY

Mapping traditional security technologies to AWS Dave Walker Specialised Solutions Architect Security and Compliance Amazon Web Services UK Ltd

Cloud security 2.0: Joko nyt pilveen voi luottaa?

IOT DEVICE MANAGEMENT: SECURE AND SCALABLE DEPLOYMENTS WITH DIGI REMOTE MANAGER

4) An organization needs a data store to handle the following data types and access patterns:

CogniFit Technical Security Details

Lambda Architecture for Batch and Stream Processing. October 2018

AWS Course Syllabus. Linux Fundamentals. Installation and Initialization:

Hackproof Your Cloud Responding to 2016 Threats

CPM. Quick Start Guide V2.4.0

Protecting Your Data in AWS. 2015, Amazon Web Services, Inc. or its Affiliates. All rights reserved.

Network Security & Access Control in AWS

AWS Security. Stephen E. Schmidt, Directeur de la Sécurité

re:cap 2015 Mark Bate AWS Solutions Architect 2015, Amazon Web Services, Inc. or its affiliates. All rights reserved

Introduction to AWS GoldBase. A Solution to Automate Security, Compliance, and Governance in AWS

The Orion Papers. AWS Solutions Architect (Associate) Exam Course Manual. Enter

#AWSSummit. Démarrer sur AWS. Les services fondamentaux d AWS

Building Big Data Storage Solutions (Data Lakes) for Maximum Flexibility. AWS Whitepaper

Understanding Perimeter Security

VMware Cloud on AWS. A Closer Look. Frank Denneman Senior Staff Architect Cloud Platform BU

DevOps on AWS Deep Dive on Continuous Delivery and the AWS Developer Tools

AWS Storage Gateway. Not your father s hybrid storage. University of Arizona IT Summit October 23, Jay Vagalatos, AWS Solutions Architect

Simple Security for Startups. Mark Bate, AWS Solutions Architect

Transcription:

Mid-Atlantic CIO Forum

Agenda Security of the Cloud Security In the Cloud Your Product and Services Roadmap (innovation) AWS and Cloud Services Growth and Expansion at AWS Questions & Discussion

Shared Responsibility What about security OF the cloud?

Security Shared Responsibility Model AWS Foundation Services Compute Storage Database Networking AWS Global Infrastructure Availability Zones Regions Edge Locations AWS is responsible for the security OF the cloud

Auditing - Comparison on-prem vs on AWS Start with bare concrete Functionally optional you can build a secure system without it Audits done by an in-house team Accountable to yourself Typically check once a year Workload-specific compliance checks Must keep pace and invest in security innovation Start on base of accredited services Functionally necessary high watermark of requirements Audits done by third party experts Accountable to everyone Continuous monitoring Compliance approach based on all workload scenarios Security innovation drives broad compliance on-prem on AWS

What this means You benefit from an environment built for the most security sensitive organizations AWS manages 1,800+ security controls so you don t have to You get to define the right security controls for your workload sensitivity You always have full ownership and control of your data

AWS Assurance Programs

Meet your own security objectives Customers Your own accreditation Your own certifications Your own external audits Customer scope and effort is reduced Better results through focused efforts AWS Foundation Services Compute Storage Database Networking Built on AWS consistent baseline controls AWS Global Infrastructure Availability Zones Regions Edge Locations

Navigating Shared Responsibility Achieving accreditation or certification on AWS is possible but how can we help?

Industry Best Practices for Securing AWS Resources CIS Amazon Web Services Foundations Architecture agnostic set of security configuration best practices provides set-by-step implementation and assessment procedures

Industry Best Practices for Securing AWS Resources Benchmarks for AWS Marketplace O.S images hardened according to the trusted secure configuration baselines prescribed by CIS

AWS Shared Responsibility Model: for Infrastructure Services Customer content Platform & Applications Management Operating System, Network & Firewall Configuration Client-Side Data encryption & Data Integrity Authentication Server-Side Encryption Fire System and/or Data Optional Opaque data: 1 s and 0 s (in transit/at rest) Network Traffic Protection Encryption / Integrity / Identity Customer IAM AWS IAM Mgmt Protocols API Calls Managed by Customers AWS Foundation Services Compute Storage Database Networking AWS Global Infrastructure Regions Availability Zones Edge Locations API Endpoints Managed by

Infrastructure Service Example EC2 Foundation Services Networking, Compute, Storage AWS Global Infrastructure AWS API Endpoints AWS RESPONSIBILITIES Customers Customer Data Customer Application Operating System Network & Firewall Customer IAM (Corporate Directory Service) High Availability, Scaling Instance Management Data Protection (Transit, Rest, Backup) AWS IAM (Users, Groups, Roles, Policies)

AWS Shared Responsibility Model: for Container Services Customer content Client-Side Data encryption & Data Integrity Authentication Optional Opaque data: 1 s and 0 s (in transit/at rest) Platform & Applications Management Operating System, Network Configuration AWS Foundation Services Compute Storage Database Networking AWS Global Infrastructure Regions Availability Zones Network Traffic Protection Encryption / Integrity / Identity Edge Locations Firewall Configuration Customer IAM AWS IAM Mgmt Protocols API Endpoints Managed by API Calls Customers Managed by

Infrastructure Service Example RDS Foundational Services Networking, Compute, Storage AWS Global Infrastructure AWS API Endpoints Operating System Platform / Application AWS RESPONSIBILITIES Customers Customer Data Firewall (VPC) Customer IAM (DB Users, Table Permissions) AWS IAM (Users, Groups, Roles, Policies) High Availability Data Protection (Transit, Rest, Backup) Scaling

AWS Shared Responsibility Model: for Abstract Services Customer content (optional) Opaque Data: 1 s and 0 s (in flight / at rest) Platform & Applications Management AWS Foundation Services Client-Side Data Encryption & Data Integrity Authentication Data Protection by the Platform Protection of Data at Rest Network Traffic Protection by the Platform Protection of Data at in Transit Operating System, Network & Firewall Configuration Compute Storage Database Networking AWS IAM API Endpoints API Calls Managed by Customers Managed by AWS Global Infrastructure Regions Availability Zones Edge Locations

Infrastructure Service Example S3 Foundational Services AWS Global Infrastructure AWS API Endpoints Operating System Platform / Application Data Protection (Rest - SSE, Transit) High Availability / Scaling AWS Customers Customer Data Data Protection (Rest CSE) AWS IAM (Users, Groups, Roles, Policies)

Summary of Customer Responsibility in the Cloud Infrastructure Services Container Services Abstract Services Data Data Data Customer IAM Customer IAM AWS IAM AWS IAM AWS IAM Applications Firewall Operating System Networking/Firewall

Global Infrastructure

AWS Pace of Innovation AWS has been continually expanding its services to support virtually any cloud workload, and it now has more than 90 services that range from compute, storage, networking, database, analytics, application services, deployment, management, developer, mobile, Internet of Things (IoT), Artificial Intelligence (AI), security, hybrid and enterprise applications. AWS has launched a total of 928 new features and/or services year to date* for a total of 3,841 new features and/or services since inception in 2006. 516 1,017 61 159 2010 2012 2014 2016 * As of 1 October 2017

AWS Managed Services Redshift Amazon Pinpoint Dynamo DB AWS Snowball Amazon Workmail AWS IoT Schema Conversion Tool AWS OpsWorks CodeCommit Amazon Inspector AWS Batch AWS Snowmobile AWS Organizations Amazon Lex Amazon Kinesis Firehose Amazon Athena AWS WAF Amazon Polly AWS Personal Health Dashboard * As of 1 October 2017 EC2 Container Service WorkSpaces 3,841 AWS OpsWorks for Chef Automate Amazon EC2 Systems Manager Amazon Lightsail AWS CodeDeploy AWS Greengrass AWS Direct Connect Amazon Lumberyard Machine Learning Device Farm WorkDocs Amazon ElastiCache Amazon Inspector AWS Step Functions AWS Storage Gateway Amazon Config Amazon Appstream 2.0 AWS Shield AWS Snowball Edge Amazon Rekognition Amazon QuickSight AWS Discovery Services Amazon Cognito CloudWatch Logs AWS Service Catalog EFS AWS Elastic Beanstalk AWS Certificate Manager AWS CodePipeline Amazon Route 53 Lambda AWS Glue AWS X-Ray AWS Codebuild Amazon RDS for Aurora AWS Mobile Hub Mobile Analytics AWS Import/Export

Thank You!

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback