Continuous Cloud Security Monitoring (CCSM) - Michael Wylie
https://appseccalifornia.org/
When I first started working with AWS, there were a handful of core services. Since then, AWS has been announcing hundreds of new services per year in dozens of regions around the world. With a rapidly changing landscape, relevant documentation, tutorials, and how-to's can be difficult to come by. AWS is its own beast and traditional Incident Response and Forensics techniques don't work. Try to perform full packet inspection between EC2 instances in the same VPC or use a write blocker while analyzing an EBS. Better yet, try to build a timeline with default log settings. Organizations are desperately looking for tools available to them to detect and respond to threats. This talk will provide a much needed summary of Continuous Cloud Security Monitoring (CCSM) strategies, techniques, and best practices so you don't have to spend the next 12 months reading AWS white papers. Takeaways from this presentation will be methods to immediately apply logging, monitoring, alerting, and Honey[Things] that can be applied in any AWS environment.
Michael Wylie
Director, Cybersecurity Services, Richey May Technology Solutions
Michael Wylie, MBA, CISSP is the Director of Cybersecurity Services at Richey May Technology Solutions. In his role, Michael is responsible for delivering information assurance by means of vulnerability assessments, cloud security, penetration tests, risk management, and training.
Видео Continuous Cloud Security Monitoring (CCSM) - Michael Wylie канала AppSec California
When I first started working with AWS, there were a handful of core services. Since then, AWS has been announcing hundreds of new services per year in dozens of regions around the world. With a rapidly changing landscape, relevant documentation, tutorials, and how-to's can be difficult to come by. AWS is its own beast and traditional Incident Response and Forensics techniques don't work. Try to perform full packet inspection between EC2 instances in the same VPC or use a write blocker while analyzing an EBS. Better yet, try to build a timeline with default log settings. Organizations are desperately looking for tools available to them to detect and respond to threats. This talk will provide a much needed summary of Continuous Cloud Security Monitoring (CCSM) strategies, techniques, and best practices so you don't have to spend the next 12 months reading AWS white papers. Takeaways from this presentation will be methods to immediately apply logging, monitoring, alerting, and Honey[Things] that can be applied in any AWS environment.
Michael Wylie
Director, Cybersecurity Services, Richey May Technology Solutions
Michael Wylie, MBA, CISSP is the Director of Cybersecurity Services at Richey May Technology Solutions. In his role, Michael is responsible for delivering information assurance by means of vulnerability assessments, cloud security, penetration tests, risk management, and training.
Видео Continuous Cloud Security Monitoring (CCSM) - Michael Wylie канала AppSec California
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Cloud Security Automation Monitoring and Operations
Lightning Talk: OAuth 2.0 Misimplementation, Vulnerabilities and Best Practices - Pak Foley
Introducing the OWASP Nettacker Project - Sam Stepanyan
Machine Learning and Application Security: Evolution of Attack Detection - Kavya Pearlman
A Cloud Security Architecture Workshop
Ansible Tutorial | What is Ansible | Ansible | DevOps Tools | Edureka
JWT Parkour - Louis Nyffenegger
Introduction to Linux Network Namespaces
Cloud Security Monitoring Quickstart
Securing the Cloud - Prisma Cloud by Palo Alto Networks
Ansible Roles - Understanding Ansible Roles
Cloud Security Explained! Hear from an Pro Hacker!
Information Management Basics
Game Theory: The Science of Decision-Making
14. SSL and HTTPS
Introduction to Networking
Getting Started with Amazon Web Services
Secure by Design – the Architect's Guide to Security Design Principles • Eoin Woods • GOTO 2016
Deploying OpenStack Using Docker in Production
Lightning Talk: RaiseMe Introduction - Lori Barfield