AWS Community DAY Albertini-Ellan Cloud Security (1).pptx

ellan12 53 views 14 slides Apr 29, 2024
Slide 1
Slide 1 of 14
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11
Slide 12
12
Slide 13
13
Slide 14
14

About This Presentation

cloud app security

Size: 950.55 KB
Language: en
Added: Apr 29, 2024
Slides: 14 pages

Slide Content

KENYA

Hacked!!...Not again!!... A guide on Reducing your attack surface on AWS cloud Albertini/Ellan | 20 th April 2024 KENYA

Albertini Francis Cloud Security Engineer Cloud Native security enthusiast AWS Community Builder: Security & Identity Gamer, Basketball Presenters Ellan Wambugu KENYA Solutions Architect DevSecOps Engineer AWS Community Builder : Machine Learning A stressed-out man united fan

Cloud Security???

Recent Cloud Breach Victims Football Australia Vectors : embedded cloud access keys & Public s3 bucket containing PII: player passports & contracts Capital one Vector: misconfigured Firewall leading to SSRF Led to the loss of 100 million records KENYA Cisco WebEx Vectors : Long term credentials & non-decommissioned access by a resigned engineer

Major Vulnerabilities in the Cloud Limited Visibility Misconfigurations Insecure APIs Secrets mismanagement: Embedding, stolen credentials Insecure IAM Storage Application vulnerabilities leading to breach e.g. SSRF KENYA

Attacker View of your Application Hackers look for the following breach points Assets i.e. underlying cloud Application Vulnerabilities Secret scanning on app, Code repository 3 rd Party personnel KENYA

So how do I not become the next cloud sec breach headline???

Major Guidelines Threat model i.e Assumed breach perspective Cloud Security is Modular & a continuous process Build Secure from the start i.e secure architecture There is no silver bullet… you can’t just throw money at the problem KENYA

Actions to Implement Establish Visibility & drift detection Automate & orchestrate everything!!!!!... Well.. Almost everything!! Implement Configuration Management Establish comprehensive IAM policies, provisioning and deprovisioning practices Secrets management Implement workload Security KENYA

Holistic cloud security program KENYA

Cloud Security needs to be a major in organization, done well it could be the best asset but neglected will bleed you Demo time Albertini/Ellan | 20 th April 2024 KENYA

Cloud Security needs to be a major in organization, done well it could be the best asset but neglected will bleed you Q & A Albertini/Ellan | 20 th April 2024 KENYA
Tags
Categories
Technology
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 53
  • Slides 14
  • Age 581 days
Related Slideshows
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx 11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
44 views
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx 10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
45 views
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx 13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx 11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
Know for Certain 21
Know for Certain
DaveSinNM
19 views
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx 17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
23 views
View More in This Category