SlideShare a Scribd company logo

Red flags and attention points in cloud security audit, watch the security gates.

Download as PPTX, PDF
Peter GEELEN ✔
Peter GEELEN ✔

In his presentation, Peter will share his insights and experiences on Red flags and attention points in cloud security audit, watch the security gates.

Technology
1 of 31
AI, Cloud & Modern Workplace Conference 2024 15, 16 & 17 February , Online Conference https://aicmwc.azurewebsites.net
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Red flags and attention points in cloud security audit Watch the security gates 15 February 2024 , 21:00 P.M. (GMT+2) Peter GEELEN MVP Security (Identity & Access) https://www.linkedin.com/in/pgeelen/
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Important to know: Security = PPT • PPT • People • Process • Technology
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Important to know: Security = PPT • PPT • People • Process • Technology
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Security across the company • Strategic • Tactical • Operational STRATEGIC (CxO) TACTICAL (Dept.) OPERATIONAL
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Management team tasks • Accountability • Planning • Resources • Operations • Performance • Continuous improvement Act Plan Do Check Act Plan Do Check Security Improvement Time
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Security controls • Asset management • Identity & access management • System & network security • Secure configuration & baseline • Physical security • Threat and vulnerability management • Application security • Policies & procedures • Documentation • HR security • Supplier Management • Incident management • Business continuity • Disaster recovery
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Security is a process, continuously changing 1 2 3 In Few tasks simple Change Important volume of tasks Dependent tasks Balance from one to another Out Lots of tasks Lengthy Complex Legal impact Possible reactivation Uniqueness Conflicts
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference How are you doing?
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference How is your customer or supplier doing?
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Monitoring or Audit: what’s the difference ? Monitoring • Performance check • Continuous (or high frequency) • By Owner Audit • Compliance check • Regular intervals (lower frequency) • Independent from owner
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types • 1st party (internal audit) • 2nd party • Customer > supplier • Supplier > customer • 3rd party • external
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types : internal audit • Self-validation (Auditing within company) • No publication to external parties • No certificate
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types : 2nd party audit (mutual) • Commercial interest first • Contractual dependence • Due diligence • Mutual interest • Customer checking (potential) supplier • Supplier checking (potential) customer, eg before onboarding • Delegation / verification of compliance • Verification if delegated tasks are done correctly
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types : 3rd party audit (external) • Independence between parties • Auditor vs customer • No combination of consulting & audit allowed • Segregation of duties • Official certificate • Published • Available to external parties
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit main principles • Snapshot of situation • Quick estimation of situation • Risk based • Solution based, continuous improvement Some hands-on experience to stay out of trouble … detecting the red flags
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 1. First login with god mode • First login • First administrator • Full power • God mode Solution - Create special admin account - No mail, enable MFA
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 2. User ID and password • Typically personal account • User ID… and just password (an mail address) Solution • MFA • Hardware tokens • Passkeys (MFA next gen)
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 3. Default groups • Azure Groups • Large volume of Azure and M365 Roles Solution • Avoid the use of default groups • Task based access, granular control • Only use default groups when no other option left
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 4. Ad-hoc (eh..no) Identity Management • Manual management • No process • User duplication from existing users Solution • Setup basic IDM (identity mgmt) • Setup IAM (identity and access mgmt) 1 2 3 In Start of identity Hire, onboarding, provisioning, create, Begin, ... Change of identity, move, promotion, update, maintenance, operations, ... Out End-of-life Fire, termination, End-of-contract, deprovisioning, Revocation, delete, ...
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 5. No process management • Manual management • No process owner • No process • No idea how data flows • No idea on changes Solution • Use basic process definitions • Check ISO9001
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 6. All-in one account • User account = admin account • Mail enabled • Used for office and admin tasks Solution • Account separation • Segregation of duties • Separate logins for users and administrators
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 7. All-in one desktop • Login account = local admin account • Full access • … Solution • Daily operations as user • Admin for specific access
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 8. RDP remote access • RDP to Azure • … Solution • Bastion host
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 9. One network • One network • Direct connections to Azure • No segmentation (neither in Azure as physical) Solution • Segmentation • Firewalls on every host and every network
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 9. Onetime configuration • One configuration fixed at first configuration • But once set, never reset … • No review • No IDM cycle Solution: check... • Everytime on new configuration • During changes • Check regularly (put it on your agenda) • Use IDM (lifecycle)
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) References • Microsoft • Azure compliance: ISO27001 • Azure compliance: ISO27017 / ISO 27018 • Learn Microsoft Azure audit and logging fundamentals • Azure security logging and auditing • Azure security management and monitoring overview
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) References • Azure hardening • Azure security best practices and patterns
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) References • ISO standards • ISO 27001: ISMS (information security management system) • ISO 27002: ISMS guidance • ISO 27017: cloud security • ISO 27018: PII in cloud (data protection in cloud • Cloud security basics (CCSK by CSA) • https://cloudsecurityalliance.org/ • Cloud controls matrix
AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) More of this… • On my blog • Identity Underground • https://identityunderground.wordpress.com/
Thank You !!! AI, Cloud & Modern Workplace Conference 2024 15, 16 & 17 February , Online Conference

Recommended

Session 2023-11.pptx
Session 2023-11.pptxSession 2023-11.pptx
Session 2023-11.pptxAndreeaTom
 
UiPath 23.4 Product Release Updates
UiPath 23.4 Product Release UpdatesUiPath 23.4 Product Release Updates
UiPath 23.4 Product Release UpdatesDianaGray10
 
ITCamp 2019 - Mihai Tataran - Governing your Cloud Resources
ITCamp 2019 - Mihai Tataran - Governing your Cloud ResourcesITCamp 2019 - Mihai Tataran - Governing your Cloud Resources
ITCamp 2019 - Mihai Tataran - Governing your Cloud ResourcesITCamp
 
AWS November meetup Slides
AWS November meetup SlidesAWS November meetup Slides
AWS November meetup SlidesJacksonMorgan9
 
AWS User Group November
AWS User Group NovemberAWS User Group November
AWS User Group NovemberPolarSeven Pty Ltd
 
Cloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackCloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackLaurenWendler
 
What's New in IdP 9.0 Behavioral Biometrics and more…
What's New in IdP 9.0 Behavioral Biometrics and more…What's New in IdP 9.0 Behavioral Biometrics and more…
What's New in IdP 9.0 Behavioral Biometrics and more…SecureAuth
 
AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...
AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...
AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...Getting value from IoT, Integration and Data Analytics
 

Recommended

Session 2023-11.pptx
Session 2023-11.pptxSession 2023-11.pptx
Session 2023-11.pptxAndreeaTom
 
UiPath 23.4 Product Release Updates
UiPath 23.4 Product Release UpdatesUiPath 23.4 Product Release Updates
UiPath 23.4 Product Release UpdatesDianaGray10
 
ITCamp 2019 - Mihai Tataran - Governing your Cloud Resources
ITCamp 2019 - Mihai Tataran - Governing your Cloud ResourcesITCamp 2019 - Mihai Tataran - Governing your Cloud Resources
ITCamp 2019 - Mihai Tataran - Governing your Cloud ResourcesITCamp
 
AWS November meetup Slides
AWS November meetup SlidesAWS November meetup Slides
AWS November meetup SlidesJacksonMorgan9
 
AWS User Group November
AWS User Group NovemberAWS User Group November
AWS User Group NovemberPolarSeven Pty Ltd
 
Cloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackCloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackLaurenWendler
 
What's New in IdP 9.0 Behavioral Biometrics and more…
What's New in IdP 9.0 Behavioral Biometrics and more…What's New in IdP 9.0 Behavioral Biometrics and more…
What's New in IdP 9.0 Behavioral Biometrics and more…SecureAuth
 
AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...
AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...
AMIS Oracle OpenWorld en Code One Review 2018 - Blockchain, Integration, Serv...Getting value from IoT, Integration and Data Analytics
 
Accelerate ML Deployment with H2O Driverless AI on AWS
Accelerate ML Deployment with H2O Driverless AI on AWSAccelerate ML Deployment with H2O Driverless AI on AWS
Accelerate ML Deployment with H2O Driverless AI on AWSSri Ambati
 
The Case for Embedded Analytics: Improve the Value of your Applications with ...
The Case for Embedded Analytics: Improve the Value of your Applications with ...The Case for Embedded Analytics: Improve the Value of your Applications with ...
The Case for Embedded Analytics: Improve the Value of your Applications with ...TIBCO Jaspersoft
 
Maximizing Team Productivity with Microsoft Office 365
Maximizing Team Productivity with Microsoft Office 365Maximizing Team Productivity with Microsoft Office 365
Maximizing Team Productivity with Microsoft Office 365SWC Technology Partners
 
Cloud Customer Architecture for Big Data and Analytics V2.0
Cloud Customer Architecture for Big Data and Analytics V2.0Cloud Customer Architecture for Big Data and Analytics V2.0
Cloud Customer Architecture for Big Data and Analytics V2.0Cloud Standards Customer Council
 
CGI-IgniteChicago
CGI-IgniteChicagoCGI-IgniteChicago
CGI-IgniteChicagoMNaveedAnjum1
 
Cloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackCloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackLaurenWendler
 
30 March 2017 - Vuzion Ireland Love Cloud
30 March 2017 - Vuzion Ireland Love Cloud30 March 2017 - Vuzion Ireland Love Cloud
30 March 2017 - Vuzion Ireland Love CloudVuzion
 
Cloud Customer Architecture for API Management
Cloud Customer Architecture for API ManagementCloud Customer Architecture for API Management
Cloud Customer Architecture for API ManagementCloud Standards Customer Council
 
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...Lviv Startup Club
 
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 Review
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 ReviewBlockchain, Integration, Serverless, Microservices - OOW / Code One 2018 Review
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 ReviewRobert van Mölken
 
O365Con18 - Hybrid SharePoint Deep Dive - Thomas Vochten
O365Con18 - Hybrid SharePoint Deep Dive - Thomas VochtenO365Con18 - Hybrid SharePoint Deep Dive - Thomas Vochten
O365Con18 - Hybrid SharePoint Deep Dive - Thomas VochtenNCCOMMS
 
Lights-Out Testing for Lights-On Business
Lights-Out Testing for Lights-On BusinessLights-Out Testing for Lights-On Business
Lights-Out Testing for Lights-On BusinessWorksoft
 
The Need for Speed
The Need for SpeedThe Need for Speed
The Need for SpeedCapgemini
 
Pivoting to Cloud: How an MSP Brokers Cloud Services
Pivoting to Cloud: How an MSP Brokers Cloud Services Pivoting to Cloud: How an MSP Brokers Cloud Services
Pivoting to Cloud: How an MSP Brokers Cloud Services RightScale
 
IBM Blockchain Labs Explained v1.0
IBM Blockchain Labs Explained v1.0IBM Blockchain Labs Explained v1.0
IBM Blockchain Labs Explained v1.0Matt Lucas
 
Azure_Business_Opportunity
Azure_Business_OpportunityAzure_Business_Opportunity
Azure_Business_OpportunityNojan Emad
 
Crosswalk Introduction CSI National Sept. 23rd, 2021
Crosswalk Introduction CSI National Sept. 23rd, 2021Crosswalk Introduction CSI National Sept. 23rd, 2021
Crosswalk Introduction CSI National Sept. 23rd, 2021Hugh Seaton
 
Get Started with Microsoft Azure.pptx
Get Started with Microsoft Azure.pptxGet Started with Microsoft Azure.pptx
Get Started with Microsoft Azure.pptxAnjaliMishra647628
 
2016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V42016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V4Janani Eshwaran
 
2016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V42016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V4Janani Eshwaran
 
Data compliance - get it right the first time (Black/White printable PDF)
Data compliance - get it right the first time (Black/White printable PDF)Data compliance - get it right the first time (Black/White printable PDF)
Data compliance - get it right the first time (Black/White printable PDF)Peter GEELEN ✔
 
Data compliance - get it right the first time (Full color PDF)
Data compliance - get it right the first time (Full color PDF)Data compliance - get it right the first time (Full color PDF)
Data compliance - get it right the first time (Full color PDF)Peter GEELEN ✔
 

More Related Content

Similar to Red flags and attention points in cloud security audit, watch the security gates.

Accelerate ML Deployment with H2O Driverless AI on AWS
Accelerate ML Deployment with H2O Driverless AI on AWSAccelerate ML Deployment with H2O Driverless AI on AWS
Accelerate ML Deployment with H2O Driverless AI on AWSSri Ambati
 
The Case for Embedded Analytics: Improve the Value of your Applications with ...
The Case for Embedded Analytics: Improve the Value of your Applications with ...The Case for Embedded Analytics: Improve the Value of your Applications with ...
The Case for Embedded Analytics: Improve the Value of your Applications with ...TIBCO Jaspersoft
 
Maximizing Team Productivity with Microsoft Office 365
Maximizing Team Productivity with Microsoft Office 365Maximizing Team Productivity with Microsoft Office 365
Maximizing Team Productivity with Microsoft Office 365SWC Technology Partners
 
Cloud Customer Architecture for Big Data and Analytics V2.0
Cloud Customer Architecture for Big Data and Analytics V2.0Cloud Customer Architecture for Big Data and Analytics V2.0
Cloud Customer Architecture for Big Data and Analytics V2.0Cloud Standards Customer Council
 
Cloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackCloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackLaurenWendler
 
30 March 2017 - Vuzion Ireland Love Cloud
30 March 2017 - Vuzion Ireland Love Cloud30 March 2017 - Vuzion Ireland Love Cloud
30 March 2017 - Vuzion Ireland Love CloudVuzion
 
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...Lviv Startup Club
 
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 Review
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 ReviewBlockchain, Integration, Serverless, Microservices - OOW / Code One 2018 Review
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 ReviewRobert van Mölken
 
O365Con18 - Hybrid SharePoint Deep Dive - Thomas Vochten
O365Con18 - Hybrid SharePoint Deep Dive - Thomas VochtenO365Con18 - Hybrid SharePoint Deep Dive - Thomas Vochten
O365Con18 - Hybrid SharePoint Deep Dive - Thomas VochtenNCCOMMS
 
Lights-Out Testing for Lights-On Business
Lights-Out Testing for Lights-On BusinessLights-Out Testing for Lights-On Business
Lights-Out Testing for Lights-On BusinessWorksoft
 
The Need for Speed
The Need for SpeedThe Need for Speed
The Need for SpeedCapgemini
 
Pivoting to Cloud: How an MSP Brokers Cloud Services
Pivoting to Cloud: How an MSP Brokers Cloud Services Pivoting to Cloud: How an MSP Brokers Cloud Services
Pivoting to Cloud: How an MSP Brokers Cloud Services RightScale
 
IBM Blockchain Labs Explained v1.0
IBM Blockchain Labs Explained v1.0IBM Blockchain Labs Explained v1.0
IBM Blockchain Labs Explained v1.0Matt Lucas
 
Azure_Business_Opportunity
Azure_Business_OpportunityAzure_Business_Opportunity
Azure_Business_OpportunityNojan Emad
 
Crosswalk Introduction CSI National Sept. 23rd, 2021
Crosswalk Introduction CSI National Sept. 23rd, 2021Crosswalk Introduction CSI National Sept. 23rd, 2021
Crosswalk Introduction CSI National Sept. 23rd, 2021Hugh Seaton
 
Get Started with Microsoft Azure.pptx
Get Started with Microsoft Azure.pptxGet Started with Microsoft Azure.pptx
Get Started with Microsoft Azure.pptxAnjaliMishra647628
 
2016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V42016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V4Janani Eshwaran
 
2016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V42016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V4Janani Eshwaran
 

Similar to Red flags and attention points in cloud security audit, watch the security gates. (20)

Accelerate ML Deployment with H2O Driverless AI on AWS
Accelerate ML Deployment with H2O Driverless AI on AWSAccelerate ML Deployment with H2O Driverless AI on AWS
Accelerate ML Deployment with H2O Driverless AI on AWS
 
The Case for Embedded Analytics: Improve the Value of your Applications with ...
The Case for Embedded Analytics: Improve the Value of your Applications with ...The Case for Embedded Analytics: Improve the Value of your Applications with ...
The Case for Embedded Analytics: Improve the Value of your Applications with ...
 
Maximizing Team Productivity with Microsoft Office 365
Maximizing Team Productivity with Microsoft Office 365Maximizing Team Productivity with Microsoft Office 365
Maximizing Team Productivity with Microsoft Office 365
 
Cloud Customer Architecture for Big Data and Analytics V2.0
Cloud Customer Architecture for Big Data and Analytics V2.0Cloud Customer Architecture for Big Data and Analytics V2.0
Cloud Customer Architecture for Big Data and Analytics V2.0
 
CGI-IgniteChicago
CGI-IgniteChicagoCGI-IgniteChicago
CGI-IgniteChicago
 
Cloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover TrackCloud Innovation Tour - Discover Track
Cloud Innovation Tour - Discover Track
 
30 March 2017 - Vuzion Ireland Love Cloud
30 March 2017 - Vuzion Ireland Love Cloud30 March 2017 - Vuzion Ireland Love Cloud
30 March 2017 - Vuzion Ireland Love Cloud
 
Cloud Customer Architecture for API Management
Cloud Customer Architecture for API ManagementCloud Customer Architecture for API Management
Cloud Customer Architecture for API Management
 
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...
Vitalii Bondarenko and Eugene Berko "Cloud AI Platform as an accelerator of e...
 
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 Review
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 ReviewBlockchain, Integration, Serverless, Microservices - OOW / Code One 2018 Review
Blockchain, Integration, Serverless, Microservices - OOW / Code One 2018 Review
 
O365Con18 - Hybrid SharePoint Deep Dive - Thomas Vochten
O365Con18 - Hybrid SharePoint Deep Dive - Thomas VochtenO365Con18 - Hybrid SharePoint Deep Dive - Thomas Vochten
O365Con18 - Hybrid SharePoint Deep Dive - Thomas Vochten
 
Lights-Out Testing for Lights-On Business
Lights-Out Testing for Lights-On BusinessLights-Out Testing for Lights-On Business
Lights-Out Testing for Lights-On Business
 
The Need for Speed
The Need for SpeedThe Need for Speed
The Need for Speed
 
Pivoting to Cloud: How an MSP Brokers Cloud Services
Pivoting to Cloud: How an MSP Brokers Cloud Services Pivoting to Cloud: How an MSP Brokers Cloud Services
Pivoting to Cloud: How an MSP Brokers Cloud Services
 
IBM Blockchain Labs Explained v1.0
IBM Blockchain Labs Explained v1.0IBM Blockchain Labs Explained v1.0
IBM Blockchain Labs Explained v1.0
 
Azure_Business_Opportunity
Azure_Business_OpportunityAzure_Business_Opportunity
Azure_Business_Opportunity
 
Crosswalk Introduction CSI National Sept. 23rd, 2021
Crosswalk Introduction CSI National Sept. 23rd, 2021Crosswalk Introduction CSI National Sept. 23rd, 2021
Crosswalk Introduction CSI National Sept. 23rd, 2021
 
Get Started with Microsoft Azure.pptx
Get Started with Microsoft Azure.pptxGet Started with Microsoft Azure.pptx
Get Started with Microsoft Azure.pptx
 
2016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V42016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V4
 
2016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V42016 DSG Webinar Azure HDInsight 2 V4
2016 DSG Webinar Azure HDInsight 2 V4
 

More from Peter GEELEN ✔

Data compliance - get it right the first time (Black/White printable PDF)
Data compliance - get it right the first time (Black/White printable PDF)Data compliance - get it right the first time (Black/White printable PDF)
Data compliance - get it right the first time (Black/White printable PDF)Peter GEELEN ✔
 
Data compliance - get it right the first time (Full color PDF)
Data compliance - get it right the first time (Full color PDF)Data compliance - get it right the first time (Full color PDF)
Data compliance - get it right the first time (Full color PDF)Peter GEELEN ✔
 
20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...
20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...
20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...Peter GEELEN ✔
 
20201014 iso27001 iso27701 nist v2 (extended version)
20201014 iso27001 iso27701 nist v2 (extended version)20201014 iso27001 iso27701 nist v2 (extended version)
20201014 iso27001 iso27701 nist v2 (extended version)Peter GEELEN ✔
 
20200206 privatum privacy after work - notes 3p
20200206 privatum privacy after work - notes 3p20200206 privatum privacy after work - notes 3p
20200206 privatum privacy after work - notes 3pPeter GEELEN ✔
 
Identity Days 2019 - Sécurisation MiM (Peter Geelen)
Identity Days 2019 - Sécurisation MiM (Peter Geelen)Identity Days 2019 - Sécurisation MiM (Peter Geelen)
Identity Days 2019 - Sécurisation MiM (Peter Geelen)Peter GEELEN ✔
 

More from Peter GEELEN ✔ (7)

Data compliance - get it right the first time (Black/White printable PDF)
Data compliance - get it right the first time (Black/White printable PDF)Data compliance - get it right the first time (Black/White printable PDF)
Data compliance - get it right the first time (Black/White printable PDF)
 
Data compliance - get it right the first time (Full color PDF)
Data compliance - get it right the first time (Full color PDF)Data compliance - get it right the first time (Full color PDF)
Data compliance - get it right the first time (Full color PDF)
 
20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...
20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...
20210325 Slides - (ISC) BeLux Chapter - Using Enterprise Security for cyberse...
 
20201014 iso27001 iso27701 nist v2 (extended version)
20201014 iso27001 iso27701 nist v2 (extended version)20201014 iso27001 iso27701 nist v2 (extended version)
20201014 iso27001 iso27701 nist v2 (extended version)
 
20200206 privatum privacy after work - notes 3p
20200206 privatum privacy after work - notes 3p20200206 privatum privacy after work - notes 3p
20200206 privatum privacy after work - notes 3p
 
Risk management basics
Risk management basicsRisk management basics
Risk management basics
 
Identity Days 2019 - Sécurisation MiM (Peter Geelen)
Identity Days 2019 - Sécurisation MiM (Peter Geelen)Identity Days 2019 - Sécurisation MiM (Peter Geelen)
Identity Days 2019 - Sécurisation MiM (Peter Geelen)
 

Recently uploaded

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 

Recently uploaded (20)

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 

Red flags and attention points in cloud security audit, watch the security gates.

  • 1. AI, Cloud & Modern Workplace Conference 2024 15, 16 & 17 February , Online Conference https://aicmwc.azurewebsites.net
  • 2. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Red flags and attention points in cloud security audit Watch the security gates 15 February 2024 , 21:00 P.M. (GMT+2) Peter GEELEN MVP Security (Identity & Access) https://www.linkedin.com/in/pgeelen/
  • 3. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Important to know: Security = PPT • PPT • People • Process • Technology
  • 4. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Important to know: Security = PPT • PPT • People • Process • Technology
  • 5. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Security across the company • Strategic • Tactical • Operational STRATEGIC (CxO) TACTICAL (Dept.) OPERATIONAL
  • 6. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Management team tasks • Accountability • Planning • Resources • Operations • Performance • Continuous improvement Act Plan Do Check Act Plan Do Check Security Improvement Time
  • 7. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Security controls • Asset management • Identity & access management • System & network security • Secure configuration & baseline • Physical security • Threat and vulnerability management • Application security • Policies & procedures • Documentation • HR security • Supplier Management • Incident management • Business continuity • Disaster recovery
  • 8. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Security is a process, continuously changing 1 2 3 In Few tasks simple Change Important volume of tasks Dependent tasks Balance from one to another Out Lots of tasks Lengthy Complex Legal impact Possible reactivation Uniqueness Conflicts
  • 9. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference How are you doing?
  • 10. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference How is your customer or supplier doing?
  • 11. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Monitoring or Audit: what’s the difference ? Monitoring • Performance check • Continuous (or high frequency) • By Owner Audit • Compliance check • Regular intervals (lower frequency) • Independent from owner
  • 12. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types • 1st party (internal audit) • 2nd party • Customer > supplier • Supplier > customer • 3rd party • external
  • 13. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types : internal audit • Self-validation (Auditing within company) • No publication to external parties • No certificate
  • 14. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types : 2nd party audit (mutual) • Commercial interest first • Contractual dependence • Due diligence • Mutual interest • Customer checking (potential) supplier • Supplier checking (potential) customer, eg before onboarding • Delegation / verification of compliance • Verification if delegated tasks are done correctly
  • 15. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit types : 3rd party audit (external) • Independence between parties • Auditor vs customer • No combination of consulting & audit allowed • Segregation of duties • Official certificate • Published • Available to external parties
  • 16. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Audit main principles • Snapshot of situation • Quick estimation of situation • Risk based • Solution based, continuous improvement Some hands-on experience to stay out of trouble … detecting the red flags
  • 17. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 1. First login with god mode • First login • First administrator • Full power • God mode Solution - Create special admin account - No mail, enable MFA
  • 18. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 2. User ID and password • Typically personal account • User ID… and just password (an mail address) Solution • MFA • Hardware tokens • Passkeys (MFA next gen)
  • 19. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 3. Default groups • Azure Groups • Large volume of Azure and M365 Roles Solution • Avoid the use of default groups • Task based access, granular control • Only use default groups when no other option left
  • 20. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 4. Ad-hoc (eh..no) Identity Management • Manual management • No process • User duplication from existing users Solution • Setup basic IDM (identity mgmt) • Setup IAM (identity and access mgmt) 1 2 3 In Start of identity Hire, onboarding, provisioning, create, Begin, ... Change of identity, move, promotion, update, maintenance, operations, ... Out End-of-life Fire, termination, End-of-contract, deprovisioning, Revocation, delete, ...
  • 21. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 5. No process management • Manual management • No process owner • No process • No idea how data flows • No idea on changes Solution • Use basic process definitions • Check ISO9001
  • 22. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 6. All-in one account • User account = admin account • Mail enabled • Used for office and admin tasks Solution • Account separation • Segregation of duties • Separate logins for users and administrators
  • 23. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 7. All-in one desktop • Login account = local admin account • Full access • … Solution • Daily operations as user • Admin for specific access
  • 24. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 8. RDP remote access • RDP to Azure • … Solution • Bastion host
  • 25. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 9. One network • One network • Direct connections to Azure • No segmentation (neither in Azure as physical) Solution • Segmentation • Firewalls on every host and every network
  • 26. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference 9. Onetime configuration • One configuration fixed at first configuration • But once set, never reset … • No review • No IDM cycle Solution: check... • Everytime on new configuration • During changes • Check regularly (put it on your agenda) • Use IDM (lifecycle)
  • 27. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) References • Microsoft • Azure compliance: ISO27001 • Azure compliance: ISO27017 / ISO 27018 • Learn Microsoft Azure audit and logging fundamentals • Azure security logging and auditing • Azure security management and monitoring overview
  • 28. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) References • Azure hardening • Azure security best practices and patterns
  • 29. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) References • ISO standards • ISO 27001: ISMS (information security management system) • ISO 27002: ISMS guidance • ISO 27017: cloud security • ISO 27018: PII in cloud (data protection in cloud • Cloud security basics (CCSK by CSA) • https://cloudsecurityalliance.org/ • Cloud controls matrix
  • 30. AI, Cloud & Modern Workplace Conference 2024 16, 17 & 18 February , Online Conference Presentation Title 18 February , 9 P.M. (GMT+2) More of this… • On my blog • Identity Underground • https://identityunderground.wordpress.com/
  • 31. Thank You !!! AI, Cloud & Modern Workplace Conference 2024 15, 16 & 17 February , Online Conference