Transitioning to AWS in a Hurry Without Getting Owned

Presented at THOTCON 0x8 (2017), May 4, 2017, 5 p.m. (25 minutes).

There are two kinds of people in this community: those who embrace the cloud and all it has to offer, and those who have the cloud thrust upon them. Amazon Web Services remains the most popular enterprise cloud service and is becoming more ubiquitous every year. In this talk, we'll make the assumption that you're new to AWS and/or have been handed a poorly managed account. I'll cover hardening best practices and how to work with your ops team to properly resource cloud services. If you're using the AWS management console, you aren't using AWS correctly. In order to get you on the right track, I'll help you learn the AWS command line interface so you can control and automate AWS services. Identity and access management (IAM) is central to user provisioning in AWS, but unfortunately it's also one of the largest causes of AWS security incidents. I'll go over the role and service based access, including EC2 security roles, S3 bucket policies, and how to audit them. Finally, we'll discuss how to set up logging and alerting, so you too can wake up in the middle of the night when someone enables Global SSH on all your EC2 instances.


Presenters:

  • Devina Dhawan
    Devina currently works as a security engineer at Etsy - the craftiest of marketplaces - in Brooklyn, NY.

Similar Presentations: