Continuous Cloud Security Monitoring (CCSM) - Michael Wylie
https://appseccalifornia.org/
When I first started working with AWS, there were a handful of core services. Since then, AWS has been announcing hundreds of new services per year in dozens of regions around the world. With a rapidly changing landscape, relevant documentation, tutorials, and how-to's can be difficult to come by. AWS is its own beast and traditional Incident Response and Forensics techniques don't work. Try to perform full packet inspection between EC2 instances in the same VPC or use a write blocker while analyzing an EBS. Better yet, try to build a timeline with default log settings. Organizations are desperately looking for tools available to them to detect and respond to threats. This talk will provide a much needed summary of Continuous Cloud Security Monitoring (CCSM) strategies, techniques, and best practices so you don't have to spend the next 12 months reading AWS white papers. Takeaways from this presentation will be methods to immediately apply logging, monitoring, alerting, and Honey[Things] that can be applied in any AWS environment.
Michael Wylie
Director, Cybersecurity Services, Richey May Technology Solutions
Michael Wylie, MBA, CISSP is the Director of Cybersecurity Services at Richey May Technology Solutions. In his role, Michael is responsible for delivering information assurance by means of vulnerability assessments, cloud security, penetration tests, risk management, and training.
Видео Continuous Cloud Security Monitoring (CCSM) - Michael Wylie канала AppSec California
When I first started working with AWS, there were a handful of core services. Since then, AWS has been announcing hundreds of new services per year in dozens of regions around the world. With a rapidly changing landscape, relevant documentation, tutorials, and how-to's can be difficult to come by. AWS is its own beast and traditional Incident Response and Forensics techniques don't work. Try to perform full packet inspection between EC2 instances in the same VPC or use a write blocker while analyzing an EBS. Better yet, try to build a timeline with default log settings. Organizations are desperately looking for tools available to them to detect and respond to threats. This talk will provide a much needed summary of Continuous Cloud Security Monitoring (CCSM) strategies, techniques, and best practices so you don't have to spend the next 12 months reading AWS white papers. Takeaways from this presentation will be methods to immediately apply logging, monitoring, alerting, and Honey[Things] that can be applied in any AWS environment.
Michael Wylie
Director, Cybersecurity Services, Richey May Technology Solutions
Michael Wylie, MBA, CISSP is the Director of Cybersecurity Services at Richey May Technology Solutions. In his role, Michael is responsible for delivering information assurance by means of vulnerability assessments, cloud security, penetration tests, risk management, and training.
Видео Continuous Cloud Security Monitoring (CCSM) - Michael Wylie канала AppSec California
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Cloud Security Automation Monitoring and OperationsLightning Talk: OAuth 2.0 Misimplementation, Vulnerabilities and Best Practices - Pak FoleyIntroducing the OWASP Nettacker Project - Sam StepanyanMachine Learning and Application Security: Evolution of Attack Detection - Kavya PearlmanA Cloud Security Architecture WorkshopAnsible Tutorial | What is Ansible | Ansible | DevOps Tools | EdurekaJWT Parkour - Louis NyffeneggerIntroduction to Linux Network NamespacesCloud Security Monitoring QuickstartSecuring the Cloud - Prisma Cloud by Palo Alto NetworksAnsible Roles - Understanding Ansible RolesCloud Security Explained! Hear from an Pro Hacker!Information Management BasicsGame Theory: The Science of Decision-Making14. SSL and HTTPSIntroduction to NetworkingGetting Started with Amazon Web ServicesSecure by Design – the Architect's Guide to Security Design Principles • Eoin Woods • GOTO 2016Deploying OpenStack Using Docker in ProductionLightning Talk: RaiseMe Introduction - Lori Barfield