In this presentation, Luc van Donkersgoed explains how to use Serverless Technology (AWS Config, AWS Lambda, AWS CloudWatch Events, AWS SecurityHub) to improve the security of hundreds of AWS accounts.
Examples include automatic remediation with SSM documents and Lambda, manual remediation with SecurityHub and SSH through SSM.
15. What we’re trying to achieve
• Anyone should be able to deploy anything
• If there is an issue, it gets resolved automatically
• Security is observable