Presentation on Cloud Security 101 - 2024
jassics
436 views
33 slides
Aug 28, 2024
Slide 1 of 33
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
About This Presentation
presentation on cloud security basics that explains what is cloud, what are the important topics one should learn in cloud security with learning resources and examples.
Slide Content
Cloud
Security
101
1
Sanjeev Kumar Jaiswal
Security
101
1
Sanjeev Kumar Jaiswal
•14+ years of Experience
•Security Architect, Tesco
➤Security Head in Lifesight for 2.5 years
➤India Lead, AppSec Team in Epam
•Application Security and
•Cloud Security
•Programming: Perl, Python
•Areas of Interest: Learning and teaching
concepts on DevSecOps, Cloud Security &
Security Automation
Sanjeev Jaiswal (jassi)
2
•Security Architect, Tesco
➤Security Head in Lifesight for 2.5 years
➤India Lead, AppSec Team in Epam
•Application Security and
•Cloud Security
•Programming: Perl, Python
•Areas of Interest: Learning and teaching
concepts on DevSecOps, Cloud Security &
Security Automation
Sanjeev Jaiswal (jassi)
2
What we will cover
•For whom this session is (awareness session)
•Brief of Cloud Computing
•Cloud Security Overview
•What covers under cloud security
•Job profile categories
•Learning references
•What’s Next
3
•For whom this session is (awareness session)
•Brief of Cloud Computing
•Cloud Security Overview
•What covers under cloud security
•Job profile categories
•Learning references
•What’s Next
3
Key Audience
•College Students
•Freshers (0-2 years)
•Want to switch into Cloud Security
•Interested in Cloud Security
•Curious what’s there in Cloud Security
4
•College Students
•Freshers (0-2 years)
•Want to switch into Cloud Security
•Interested in Cloud Security
•Curious what’s there in Cloud Security
4
What we will cover
•Quick recap of Cloud Computing - 5 mins.
•Service model and Deployment model - 5 mins.
•Why we need Cloud Security - 5 mins.
•Cloud Security Fundamentals - 30 mins.
•What’s Next - 5 mins.
•Q&A - 10 min.
5
•Quick recap of Cloud Computing - 5 mins.
•Service model and Deployment model - 5 mins.
•Why we need Cloud Security - 5 mins.
•Cloud Security Fundamentals - 30 mins.
•What’s Next - 5 mins.
•Q&A - 10 min.
5
Cloud Computing is the use of
computing services like servers,
storage, databases, networking,
software, analytics, intelligence and
many more over the Internet (“the
cloud”)
6
computing services like servers,
storage, databases, networking,
software, analytics, intelligence and
many more over the Internet (“the
cloud”)
6
Why we need cloud computing at all?
•Better Availability
•Higher durability
•Secured?
•Economical
•Compliant
•Go live in a minute
7
•Better Availability
•Higher durability
•Secured?
•Economical
•Compliant
•Go live in a minute
7
Advantages of Cloud Computing
•Pay as you go
•Resilient
•Scalable
•Economical
•Enhance Productivity, Performance and
•Security
8
•Pay as you go
•Resilient
•Scalable
•Economical
•Enhance Productivity, Performance and
•Security
8
Cloud Computing
Deployment Model
9
Deployment Model
9
Cloud Computing Service Model
•IaaS - Digital Ocean, Rackspace, GCE, Amazon EC2
•PaaS - Beanstalk, Heroku, Google App Engine
•SaaS - Gmail, Facebook, Dropbox, Wordpress, Office365
•XaaS - Database as a Service, Security as a Service, Malware as a Service
(VMware AppDefense)
10
•IaaS - Digital Ocean, Rackspace, GCE, Amazon EC2
•PaaS - Beanstalk, Heroku, Google App Engine
•SaaS - Gmail, Facebook, Dropbox, Wordpress, Office365
•XaaS - Database as a Service, Security as a Service, Malware as a Service
(VMware AppDefense)
10
Cloud
Security
Basics
11
Security
Basics
11
12
13
14
15
Why we need cloud security
✴Cloud computing is being used for more than two decades.
Still, several businesses find security as a challenge to handle.
•Everyone is in Cloud now a days
•It’s shared responsibility
•Still new, so more to explore
•Multi tenancy make things more attack prone
•Service Providers are not macho man
•Data Security is a big concern
•and many more …
16
✴Cloud computing is being used for more than two decades.
Still, several businesses find security as a challenge to handle.
•Everyone is in Cloud now a days
•It’s shared responsibility
•Still new, so more to explore
•Multi tenancy make things more attack prone
•Service Providers are not macho man
•Data Security is a big concern
•and many more …
16
17
Cloud-Native Security vs Hybrid Cloud Security
•Door with built-in lock
•CCTV camera
•You need both for better security
18
•Door with built-in lock
•CCTV camera
•You need both for better security
18
Security in the cloud consists of 4 areas:
•Data Protection
•Infrastructure Protection
•Privilege Management
•Detective Controls
19
Most Crucial aspects of Cloud Security
•Data Protection
•Infrastructure Protection
•Privilege Management
•Detective Controls
19
Most Crucial aspects of Cloud Security
•It’s a shared responsibility
•IAM: Principle of Least Privilege
•Network Security
•Application Security
•Data Security
20
Cloud Security Dissection
•Logging and Monitoring
•Cloud Security Automation
•Backup and Disaster Recovery
•Cloud Compliance and Governance
•Threat Detection and Response
•IAM: Principle of Least Privilege
•Network Security
•Application Security
•Data Security
20
Cloud Security Dissection
•Logging and Monitoring
•Cloud Security Automation
•Backup and Disaster Recovery
•Cloud Compliance and Governance
•Threat Detection and Response
Logging
•Whom to give log access
•What to Log
•Where to store
•Log Duration
•Secured Cloud Logging Service - sumologic, alertlogic
•Cloudtrail, Cloudwatch, VPC flow logs in AWS
21
•Whom to give log access
•What to Log
•Where to store
•Log Duration
•Secured Cloud Logging Service - sumologic, alertlogic
•Cloudtrail, Cloudwatch, VPC flow logs in AWS
21
Alert & Monitoring
•Trigger point
•What to monitor
•At what frequency
•How much possibility through Automation?
•Alert response mechanism
•IR Mechanism
22
•Trigger point
•What to monitor
•At what frequency
•How much possibility through Automation?
•Alert response mechanism
•IR Mechanism
22
•AWS EC2
•AWS IAM
•Amazon S3
•VPC
•Lambda
•Route53
•Load Balancer
23
•API Gateway
•CloudTrail
•Amazon RDS
•Cloudfront
AWS essential services
•AWS IAM
•Amazon S3
•VPC
•Lambda
•Route53
•Load Balancer
23
•API Gateway
•CloudTrail
•Amazon RDS
•Cloudfront
AWS essential services
•AWS IAM
•KMS
•AWS CloudTrail
•AWS Config
•AWS GuardDuty
•AWS Macie
•Amazon Inspector
24
•AWS Shield
•AWS WAF
•Trusted Advisor
•AWS Security Hub
•Amazon Cognito
•Pacu, Prowler, Cloud
Custodian, Cloudcheckr,
Tenable, and so on…
AWS Security services and tools
•KMS
•AWS CloudTrail
•AWS Config
•AWS GuardDuty
•AWS Macie
•Amazon Inspector
24
•AWS Shield
•AWS WAF
•Trusted Advisor
•AWS Security Hub
•Amazon Cognito
•Pacu, Prowler, Cloud
Custodian, Cloudcheckr,
Tenable, and so on…
AWS Security services and tools
Summary
25
25
•Understand basics of cloud computing
•Get familiar with linux commands, cli, computer networks
•Create a free tier account with AWS/GCP/Azure
•Make yourself comfortable with essential services
•Make a good grip on cloud native security services
•Hands-on is everything
•Read official documentation for better understanding
26
•Get familiar with linux commands, cli, computer networks
•Create a free tier account with AWS/GCP/Azure
•Make yourself comfortable with essential services
•Make a good grip on cloud native security services
•Hands-on is everything
•Read official documentation for better understanding
26
27
What’s Next
28
28
•Advanced Network and Infra Security
•SIEM in Cloud
•CSPM vs CASB (also check CWPP) and now CNAPP
•Cloud Security Threats
•CSA and NIST standards
•Data Governance and Compliance
•Security Automation :
•Cloudformation, Terraform, Pulumi etc.
•Security in CI/CD -> DevSecOps (Hotshot)
29
•SIEM in Cloud
•CSPM vs CASB (also check CWPP) and now CNAPP
•Cloud Security Threats
•CSA and NIST standards
•Data Governance and Compliance
•Security Automation :
•Cloudformation, Terraform, Pulumi etc.
•Security in CI/CD -> DevSecOps (Hotshot)
29
References & Credits
•Basics of Cloud Security
•Cloud Services Explained by IBM
•Awesome AWS Security
•Cloud Computing Courses from Acloud.guru
•AWS Security Study Plan
•AWS Security Interview Questions
•Cybersecurity in the Cloud Specialization (Coursera)
•Secure Cloud Architecture
30
•Basics of Cloud Security
•Cloud Services Explained by IBM
•Awesome AWS Security
•Cloud Computing Courses from Acloud.guru
•AWS Security Study Plan
•AWS Security Interview Questions
•Cybersecurity in the Cloud Specialization (Coursera)
•Secure Cloud Architecture
30
My Social Channels
31
linkedin.com/in/jassics
twitter.com/jassics
github.com/jassics
cybercloud.guru
31
linkedin.com/in/jassics
twitter.com/jassics
github.com/jassics
cybercloud.guru
32
For further queries, please feel free to contact
me at [email protected]
WhatsApp Group (Cybercloud Learning):
https://chat.whatsapp.com/
HYOMBR0edCm4L2ej3lcPmn
For further queries, please feel free to contact
me at [email protected]
WhatsApp Group (Cybercloud Learning):
https://chat.whatsapp.com/
HYOMBR0edCm4L2ej3lcPmn
33
Categories
TechnologyDownload
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 436
- Slides 33
- Age 461 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
45 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
45 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
36 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
33 views
21
Know for Certain
DaveSinNM
20 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
24 views