Automating Amazon Inspector Assessments and Findings Remediation

•

1 like•715 views

Amazon Web Services

DevSecOps helps customers create an environment where "everyone is responsible for security." Adopting DevSecOps can be challenging using traditional security tools that are designed for on-premises infrastructure. Amazon Inspector is an automated security assessment service that helps you adopt DevSecOps by integrating security assessments directly into the development process of applications running on Amazon Elastic Compute Cloud (Amazon EC2). In this session, we will deep dive into Amazon Inspector and show how you can automate host security assessments to make them a seamless part of your DevSecOps lifecycle. We will run through a demo of installing the AWS agent, setting up assessment targets and templates, scheduling and running assessments. We will then explore the findings generated by assessments and discuss how you can automate the management and remediation of findings.

Eric Fitzgerald, Principal Engineer, Amazon Inspector
November 09, 2017
Session TitleAmazon Inspector
automating security assessments & managing findings

What to Expect from the Session
Amazon Confidential
• Brief overview of Amazon Inspector
• Lab 1: Methods for automating Amazon Inspector agent installations
• Lab 2: Automatic security assessment triggers
• Lab 3: Automated findings remediation
• Q&A
What are we going to do?

Amazon Confidential
What is Amazon Inspector?
• Security & vulnerability assessment
• Host-based analysis
• OS and Applications
• Findings contain remediation suggestion
• Security best practice

Amazon Confidential
Why launch Amazon Inspector?
Our customers asked us to:
• Complement shared security model
• Automatable
• DevSecOps

Amazon Confidential
Key Concepts for Inspector
Inspector Agent Assessment Targets Assessment Template
Rules Packages Triggers & Runs Findings & Reports

Amazon Confidential
Installing & Running
Assessments
Hands on Lab #1

Amazon Confidential
Inspector 101
https://docs.aws.amazon.com/inspector/latest/userguide/
inspector_quickstart.html

Amazon Confidential
Automated Assessment
Hands on Lab #2

Amazon Confidential
Scheduling Assessments
https://docs.aws.amazon.com/inspector/latest/userguide/
inspector_assessments.html#assessment_runs-
schedule

Amazon Confidential
Automating Remediation
Hands on Lab #3

Amazon Confidential
Automated Remediation
https://aws.amazon.com/blogs/security/how-to-remediate-
amazon-inspector-security-findings-automatically/

Thank You!

Recommended

Build on AWS: Building & Modernizing

Build on AWS: Building & Modernizing

Build on AWS: Building & Modernizing

Amazon Web Services

Using AWS CloudTrail and AWS Config to Enhance the Governance and Compliance ...

Using AWS CloudTrail and AWS Config to Enhance the Governance and Compliance ...

Using AWS CloudTrail and AWS Config to Enhance the Governance and Compliance ...

Amazon Web Services

by Daniele Stroppa, Technical Account Manager, AWS As organizations move their workloads to the cloud, companies must take steps to protect and audit their private and confidential information. This session will focus on Amazon S3 best practices and using AWS Config rules and AWS CloudTrail Data Events to help better protect data residing within S3. The session will include a demonstration of how AWS Config and CloudTrail, in combination with other AWS services, can help with S3 governance and compliance requirements.

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Amazon Web Services

Achieving Compliance and Selling to Regulated Markets on AWS

Achieving Compliance and Selling to Regulated Markets on AWS

Achieving Compliance and Selling to Regulated Markets on AWS

Amazon Web Services

Security is the top priority at AWS, and whether you are a startup or an enterprise our compliance programs can help you demonstrate the effectiveness of this security to your customers. In this session, you will learn how to build your own compliance programs on AWS, and how to show your customers evidence of this compliance. Bring both your business and technical hat as we will dive into a cross-functional strategy that will accelerate your path to compliance on AWS and your business growth in regulated markets.

Data Protection in Transit and at Rest

Data Protection in Transit and at Rest

Data Protection in Transit and at Rest

Amazon Web Services

by Eric Rose, Sr. Security Consultant, AWS With a minimum security baseline in place, you can host data—which means data protection is required. In this session, we discuss defining an encryption strategy and selecting native AWS tools (AWS KMS, AWS CloudHSM) or third-party tools; defining key rotation and key protection mechanisms; and defining data at rest and data in transit protection requirements.

Preparing for AWS Certification/ Advanced Security Training

Preparing for AWS Certification/ Advanced Security Training

Preparing for AWS Certification/ Advanced Security Training

Amazon Web Services

Achieving Compliance and Selling to Regulated Markets

Achieving Compliance and Selling to Regulated Markets

Achieving Compliance and Selling to Regulated Markets

Amazon Web Services

by Kristen Haught, Customer Outreach Manager, AWS Security is the top priority at AWS, and whether you are a startup or an enterprise-level company, our compliance programs can help you demonstrate the effectiveness of this security to your customers. In this session, you will learn how to build your own compliance programs on AWS and how to show your customers evidence of this compliance. Bring both your business and technical hats as we dive into a cross-functional strategy that will accelerate your path to compliance on AWS and your business growth in regulated markets.

Dow Jones & Wall Street Journal's journey to manage traffic spikes while miti...

Dow Jones & Wall Street Journal's journey to manage traffic spikes while miti...

Dow Jones & Wall Street Journal's journey to manage traffic spikes while miti...

Amazon Web Services

Recommended

Build on AWS: Building & Modernizing

Build on AWS: Building & Modernizing

Build on AWS: Building & Modernizing

Amazon Web Services

Using AWS CloudTrail and AWS Config to Enhance the Governance and Compliance ...

Using AWS CloudTrail and AWS Config to Enhance the Governance and Compliance ...

Using AWS CloudTrail and AWS Config to Enhance the Governance and Compliance ...

Amazon Web Services

by Daniele Stroppa, Technical Account Manager, AWS As organizations move their workloads to the cloud, companies must take steps to protect and audit their private and confidential information. This session will focus on Amazon S3 best practices and using AWS Config rules and AWS CloudTrail Data Events to help better protect data residing within S3. The session will include a demonstration of how AWS Config and CloudTrail, in combination with other AWS services, can help with S3 governance and compliance requirements.

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Amazon Web Services

Achieving Compliance and Selling to Regulated Markets on AWS

Achieving Compliance and Selling to Regulated Markets on AWS

Achieving Compliance and Selling to Regulated Markets on AWS

Amazon Web Services

Security is the top priority at AWS, and whether you are a startup or an enterprise our compliance programs can help you demonstrate the effectiveness of this security to your customers. In this session, you will learn how to build your own compliance programs on AWS, and how to show your customers evidence of this compliance. Bring both your business and technical hat as we will dive into a cross-functional strategy that will accelerate your path to compliance on AWS and your business growth in regulated markets.

Data Protection in Transit and at Rest

Data Protection in Transit and at Rest

Data Protection in Transit and at Rest

Amazon Web Services

by Eric Rose, Sr. Security Consultant, AWS With a minimum security baseline in place, you can host data—which means data protection is required. In this session, we discuss defining an encryption strategy and selecting native AWS tools (AWS KMS, AWS CloudHSM) or third-party tools; defining key rotation and key protection mechanisms; and defining data at rest and data in transit protection requirements.

Preparing for AWS Certification/ Advanced Security Training

Preparing for AWS Certification/ Advanced Security Training

Preparing for AWS Certification/ Advanced Security Training

Amazon Web Services

Achieving Compliance and Selling to Regulated Markets

Achieving Compliance and Selling to Regulated Markets

Achieving Compliance and Selling to Regulated Markets

Amazon Web Services

by Kristen Haught, Customer Outreach Manager, AWS Security is the top priority at AWS, and whether you are a startup or an enterprise-level company, our compliance programs can help you demonstrate the effectiveness of this security to your customers. In this session, you will learn how to build your own compliance programs on AWS and how to show your customers evidence of this compliance. Bring both your business and technical hats as we dive into a cross-functional strategy that will accelerate your path to compliance on AWS and your business growth in regulated markets.

Dow Jones & Wall Street Journal's journey to manage traffic spikes while miti...

Dow Jones & Wall Street Journal's journey to manage traffic spikes while miti...

Dow Jones & Wall Street Journal's journey to manage traffic spikes while miti...

Amazon Web Services

Tips and Tricks for Running Container Workloads on AWS

Tips and Tricks for Running Container Workloads on AWS

Tips and Tricks for Running Container Workloads on AWS

Amazon Web Services

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

Amazon Web Services

Security practitioners face new and evolving threats every day. BrightEdge needed to take a more proactive and efficient stance to monitor, investigate and triage threats, and maintain their security posture on the AWS Cloud. Splunk’s analytics-driven security solution made it easy for BrightEdge to gain visibility across their entire cloud environment to secure critical customer data and ensure compliance. In this webinar, you’ll hear how BrightEdge gained the end-to-end visibility required to respond quickly and effectively to security threats using Splunk.

Detective Controls: Gain Visibility and Record Change

Detective Controls: Gain Visibility and Record Change

Detective Controls: Gain Visibility and Record Change

Amazon Web Services

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Amazon Web Services

AWS customers benefit from more than 1,800 security and compliance controls. Learn how these features offer visibility, agility, and control, raising the bar on cloud security over legacy environments. AWS Config can help you achieve compliance in real-time. You will have the opportunity to see how AWS Config empowers users to achieve continuous compliance through its AWS Config rules, and when used alongside AWS Lambda.

SRV318_Research at PNNL Powered by AWS

SRV318_Research at PNNL Powered by AWS

SRV318_Research at PNNL Powered by AWS

Amazon Web Services

15015 SRV318 Serverless Breakout Session Research at PNNL: Powered by AWS Pacific Northwest National Laboratory's rich data sciences capability has produced novel solutions in numerous research areas including image analysis, statistical modeling, and social media (and many more!). See how PNNL software engineers utilize AWS to enable better collaboration between researchers and engineers, and to power the data processing systems required to facilitate this work, with a focus on Lambda, EC2, S3, Apache Nifi and other technologies. Several approaches will be covered including lessons learned. AWS re:Invent 2017, Amazon, Giardinelli, Serverless, SRV318, EC2 11/28/2017 1:00:00 PM Tue Breakout Session

Infrastructure Security: Your Minimum Security Baseline

Infrastructure Security: Your Minimum Security Baseline

Infrastructure Security: Your Minimum Security Baseline

Amazon Web Services

by Steve Laino, GRC Consultant, AWS After AWS IAM and detective controls, the afternoon at AWS Security Week turns to infrastructure security, which means tuning AWS service configurations, AMI composition, and hardening other digital assets that will be deployed. You will learn how to define networking architecture (VPCs, subnets, security groups); how to develop hardened AMIs based on your requirements; the importance of defining Internet ingress and egress flows; and how to determine vulnerability management and operational maintenance cadence.

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Amazon Web Services

by Bill Reid, Sr. Manager of Solutions Architecture, AWS The Security Perspective of the AWS Cloud Adoption Framework (CAF) provides a framework for maturation via a structured program that incorporates best practices and processes to define, build, and optimize how you operate security controls in the AWS Cloud. The Security Perspective of the CAF provides a set of five core foundational themes designed to help you structure your selection and implementation of controls that are right for your business: AWS Identity and Access Management, detective controls, infrastructure security, data protection, and incident response. During this session, you will learn how to put the Security Perspective of the CAF into practice.

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Amazon Web Services

by Steve Laino, GRC Consultant, AWS The Security Perspective of the AWS Cloud Adoption Framework (CAF) provides a framework for maturation via a structured program that incorporates best practices and processes to define, build, and optimize how you operate security controls in the AWS Cloud. The Security Perspective of the CAF provides a set of five core foundational themes designed to help you structure your selection and implementation of controls that are right for your business: AWS Identity and Access Management, detective controls, infrastructure security, data protection, and incident response. During this session, you will learn how to put the Security Perspective of the CAF into practice.

Incident Response: Preparing and Simulating Threat Response

Incident Response: Preparing and Simulating Threat Response

Incident Response: Preparing and Simulating Threat Response

Amazon Web Services

by Eric Rose, Sr. Security Consultant, AWS After you have built and deployed a security infrastructure and automated key aspects of security operations, you should validate your work through an incident response simulation. In this session, you will learn about the best way to protect your logs; how and why to develop automated incident response capabilities via AWS tooling such as AWS Lambda; the importance of testing existing forensics tools to ensure efficacy in the cloud environment; and ways to test your plan early and often.

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Amazon Web Services

Maturing your organization from DevOps to DevSecOps

Maturing your organization from DevOps to DevSecOps

Maturing your organization from DevOps to DevSecOps

Amazon Web Services

Whether you’re just beginning to explore cloud computing or adopting it at enterprise-scale, it is important to build security into your architecture. But gone are the days of manual security audits that slow down agile development. Your modern continuous integration and continuous delivery architecture demands continuous security that doesn’t hinder DevOps. In this session, we’ll share tips to help your organization embrace DevSecOps. Presented by RedLock.

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

Amazon Web Services

Whether you are a traditional enterprise exploring migrating workloads to the cloud or are already “all-in” on AWS, performing common tasks of inventory collection, OS patch management, and image creation at scale is increasingly complicated in hybrid infrastructure environments. Amazon EC2 Systems Manager allows you to perform automated configuration and ongoing management of your hybrid environment systems at scale. This session provides an overview of key EC2 Systems Manager capabilities that help you define and track system configurations, prevent drift, and maintain software compliance of your EC2 and on-premises configurations. We will also discuss common use cases for EC2 Systems Manager and give you a demonstration of a hybrid-cloud management scenario.

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Amazon Web Services

End-user security is a constant challenge for IT leaders who must balance the business needs of BYOD, distributed workforce, and ready access to business resources, against protecting those same resources from hackers and malware. Amazon WorkSpaces provides a more secure environment over conventional desktop infrastructure because data and applications reside in the cloud, is encrypted during I/O, at rest, and in snapshots, and is not located on end-user devices. In this tech talk we will discuss how you can better secure your IT infrastructure, intellectual property, and sensitive information, and provide recommendations for best practices to help you protect your desktop computing devices using a managed Desktop-as-a-Service (DaaS) solution.

Identity and Access Management: The First Step in AWS Security

Identity and Access Management: The First Step in AWS Security

Identity and Access Management: The First Step in AWS Security

Amazon Web Services

SID301_Using AWS Lambda as a Security Team

SID301_Using AWS Lambda as a Security Team

SID301_Using AWS Lambda as a Security Team

Amazon Web Services

Operating a security practice on AWS brings many new challenges that haven't been faced in data center environments. The dynamic nature of infrastructure, the relationship between development team members and their applications, and the architecture paradigms have all changed as a result of building software on top of AWS. In this session, learn how your security team can leverage AWS Lambda as a tool to monitor, audit, and enforce your security policies within an AWS environment.

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Amazon Web Services

Enterprises find that they have specific requirements imposed by their business, internal policies, or their particular auditors. As an organisation's cloud environments continue to scale and grow, how do you ensure that the number of growing resources are adhering to your security standards and compliance requirements? In this webinar, we'll learn about how to use cloud native services such as AWS config and custom config rules, to automate audits in a rapidly changing environment and ensure we achieve continuous detection of existing and newly launched AWS resources along with their levels of compliance to enterprise security requirements. Security policies and standards can be difficult to decipher by developers or the business. Using a behaviour driven development approach, we can define our security requirements to scenario based tests in Gherkin, making it easy for developers and the business to understand the requirement. Security Operations teams or developers can then build scenario based tests as well as develop the associated lambda function for their custom Config Rule. The Rules Development Kit (RDK) for Config Rules is an open-source command-line utility designed to help you shorten the development time of custom Config Rules by up to 5 times. In this session, we'll cover how to use the RDK to write unit tests and build the lambda functions for the custom Config Rule in python, and ensure it behaves as per our requirements defined in Gherkin. What to expect: Learn AWS Config and Config Rules Concepts Understand best practice and concepts on behaviour driven development for config rules Learn to develop lambda functions for config rules in python using the Rules Development Kit (RDK) Discover how to securely set up your environment for deployments

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Amazon Web Services

Understanding AWS Secrets Manager - AWS Online Tech Talks

Understanding AWS Secrets Manager - AWS Online Tech Talks

Understanding AWS Secrets Manager - AWS Online Tech Talks

Amazon Web Services

Secure Management of Fleet at Scale

Secure Management of Fleet at Scale

Secure Management of Fleet at Scale

Amazon Web Services

by Leo Zhadanovsky, Principal Solutions Architect, AWS Amazon EC2 Systems Manager is a management service that helps you securely and safely manage instances at scale, automatically collect software inventory, apply operating system patches, create system images, and configure Windows and Linux operating systems. These capabilities help you define and track system configurations, prevent drift, and maintain software compliance of your Amazon EC2 and on-premises configurations. By providing a management approach that is designed for the scale and agility of the cloud but extends into your on-premises data center, Systems Manager makes it easier for you to seamlessly bridge your existing infrastructure with AWS.

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

** AWS Architect Certification Training: https://www.edureka.co/cloudcomputing ** This Edureka "AWS CloudFront” tutorial will introduce you to the fundamentals of AWS CloudFront and also explain various Content Delivery concepts. Following is the list of content covered in this session: 1. What Is AWS? 2. Need For AWS CloudFront 3. What Is AWS CloudFront? 4. How Content Gets Delivered? 5. AWS CloudFront Applications 6. Demo- AWS CloudFront Distribution

Keynote - Security is Coming

Keynote - Security is Coming

Keynote - Security is Coming

Amazon Web Services

While winter is indeed coming, we are not going to talk about the King of the North. John Snow, English Physician, is considered one of the fathers of modern epidemiology, in part because of his work in tracing the source of a cholera outbreak in Soho, London, in 1854. We will take a look at how much of what he discovered about disease and its spread and containment can apply to modern cloud computing and security hygiene. We will review the best practices that AWS recommends for customers, beginning with a foundation of Shared Responsibility and extending to the application of frameworks which enable good cloud health. Attendees will gain insight in ways to “remove the pump handles” on their cloud deployments.

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Amazon Web Services

AWS has a large and growing portfolio of big data management and analytics services, designed to be integrated into solution architectures that meet the needs of your business. In this session, we look at analytics through the eyes of a business intelligence analyst, a data scientist, and an application developer, and we explore how to quickly leverage Amazon Redshift, Amazon QuickSight, RStudio, and Amazon Machine Learning to create powerful, yet straightforward, business solutions. Speaker: Paul Armstrong, Solutions Architect, Amazon Web Services

More Related Content

What's hot

Tips and Tricks for Running Container Workloads on AWS

Tips and Tricks for Running Container Workloads on AWS

Tips and Tricks for Running Container Workloads on AWS

Amazon Web Services

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

Amazon Web Services

Security practitioners face new and evolving threats every day. BrightEdge needed to take a more proactive and efficient stance to monitor, investigate and triage threats, and maintain their security posture on the AWS Cloud. Splunk’s analytics-driven security solution made it easy for BrightEdge to gain visibility across their entire cloud environment to secure critical customer data and ensure compliance. In this webinar, you’ll hear how BrightEdge gained the end-to-end visibility required to respond quickly and effectively to security threats using Splunk.

Detective Controls: Gain Visibility and Record Change

Detective Controls: Gain Visibility and Record Change

Detective Controls: Gain Visibility and Record Change

Amazon Web Services

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Amazon Web Services

AWS customers benefit from more than 1,800 security and compliance controls. Learn how these features offer visibility, agility, and control, raising the bar on cloud security over legacy environments. AWS Config can help you achieve compliance in real-time. You will have the opportunity to see how AWS Config empowers users to achieve continuous compliance through its AWS Config rules, and when used alongside AWS Lambda.

SRV318_Research at PNNL Powered by AWS

SRV318_Research at PNNL Powered by AWS

SRV318_Research at PNNL Powered by AWS

Amazon Web Services

15015 SRV318 Serverless Breakout Session Research at PNNL: Powered by AWS Pacific Northwest National Laboratory's rich data sciences capability has produced novel solutions in numerous research areas including image analysis, statistical modeling, and social media (and many more!). See how PNNL software engineers utilize AWS to enable better collaboration between researchers and engineers, and to power the data processing systems required to facilitate this work, with a focus on Lambda, EC2, S3, Apache Nifi and other technologies. Several approaches will be covered including lessons learned. AWS re:Invent 2017, Amazon, Giardinelli, Serverless, SRV318, EC2 11/28/2017 1:00:00 PM Tue Breakout Session

Infrastructure Security: Your Minimum Security Baseline

Infrastructure Security: Your Minimum Security Baseline

Infrastructure Security: Your Minimum Security Baseline

Amazon Web Services

by Steve Laino, GRC Consultant, AWS After AWS IAM and detective controls, the afternoon at AWS Security Week turns to infrastructure security, which means tuning AWS service configurations, AMI composition, and hardening other digital assets that will be deployed. You will learn how to define networking architecture (VPCs, subnets, security groups); how to develop hardened AMIs based on your requirements; the importance of defining Internet ingress and egress flows; and how to determine vulnerability management and operational maintenance cadence.

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Amazon Web Services

by Bill Reid, Sr. Manager of Solutions Architecture, AWS The Security Perspective of the AWS Cloud Adoption Framework (CAF) provides a framework for maturation via a structured program that incorporates best practices and processes to define, build, and optimize how you operate security controls in the AWS Cloud. The Security Perspective of the CAF provides a set of five core foundational themes designed to help you structure your selection and implementation of controls that are right for your business: AWS Identity and Access Management, detective controls, infrastructure security, data protection, and incident response. During this session, you will learn how to put the Security Perspective of the CAF into practice.

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Amazon Web Services

by Steve Laino, GRC Consultant, AWS The Security Perspective of the AWS Cloud Adoption Framework (CAF) provides a framework for maturation via a structured program that incorporates best practices and processes to define, build, and optimize how you operate security controls in the AWS Cloud. The Security Perspective of the CAF provides a set of five core foundational themes designed to help you structure your selection and implementation of controls that are right for your business: AWS Identity and Access Management, detective controls, infrastructure security, data protection, and incident response. During this session, you will learn how to put the Security Perspective of the CAF into practice.

Incident Response: Preparing and Simulating Threat Response

Incident Response: Preparing and Simulating Threat Response

Incident Response: Preparing and Simulating Threat Response

Amazon Web Services

by Eric Rose, Sr. Security Consultant, AWS After you have built and deployed a security infrastructure and automated key aspects of security operations, you should validate your work through an incident response simulation. In this session, you will learn about the best way to protect your logs; how and why to develop automated incident response capabilities via AWS tooling such as AWS Lambda; the importance of testing existing forensics tools to ensure efficacy in the cloud environment; and ways to test your plan early and often.

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Amazon Web Services

Maturing your organization from DevOps to DevSecOps

Maturing your organization from DevOps to DevSecOps

Maturing your organization from DevOps to DevSecOps

Amazon Web Services

Whether you’re just beginning to explore cloud computing or adopting it at enterprise-scale, it is important to build security into your architecture. But gone are the days of manual security audits that slow down agile development. Your modern continuous integration and continuous delivery architecture demands continuous security that doesn’t hinder DevOps. In this session, we’ll share tips to help your organization embrace DevSecOps. Presented by RedLock.

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

Amazon Web Services

Whether you are a traditional enterprise exploring migrating workloads to the cloud or are already “all-in” on AWS, performing common tasks of inventory collection, OS patch management, and image creation at scale is increasingly complicated in hybrid infrastructure environments. Amazon EC2 Systems Manager allows you to perform automated configuration and ongoing management of your hybrid environment systems at scale. This session provides an overview of key EC2 Systems Manager capabilities that help you define and track system configurations, prevent drift, and maintain software compliance of your EC2 and on-premises configurations. We will also discuss common use cases for EC2 Systems Manager and give you a demonstration of a hybrid-cloud management scenario.

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Amazon Web Services

End-user security is a constant challenge for IT leaders who must balance the business needs of BYOD, distributed workforce, and ready access to business resources, against protecting those same resources from hackers and malware. Amazon WorkSpaces provides a more secure environment over conventional desktop infrastructure because data and applications reside in the cloud, is encrypted during I/O, at rest, and in snapshots, and is not located on end-user devices. In this tech talk we will discuss how you can better secure your IT infrastructure, intellectual property, and sensitive information, and provide recommendations for best practices to help you protect your desktop computing devices using a managed Desktop-as-a-Service (DaaS) solution.

Identity and Access Management: The First Step in AWS Security

Identity and Access Management: The First Step in AWS Security

Identity and Access Management: The First Step in AWS Security

Amazon Web Services

SID301_Using AWS Lambda as a Security Team

SID301_Using AWS Lambda as a Security Team

SID301_Using AWS Lambda as a Security Team

Amazon Web Services

Operating a security practice on AWS brings many new challenges that haven't been faced in data center environments. The dynamic nature of infrastructure, the relationship between development team members and their applications, and the architecture paradigms have all changed as a result of building software on top of AWS. In this session, learn how your security team can leverage AWS Lambda as a tool to monitor, audit, and enforce your security policies within an AWS environment.

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Amazon Web Services

Enterprises find that they have specific requirements imposed by their business, internal policies, or their particular auditors. As an organisation's cloud environments continue to scale and grow, how do you ensure that the number of growing resources are adhering to your security standards and compliance requirements? In this webinar, we'll learn about how to use cloud native services such as AWS config and custom config rules, to automate audits in a rapidly changing environment and ensure we achieve continuous detection of existing and newly launched AWS resources along with their levels of compliance to enterprise security requirements. Security policies and standards can be difficult to decipher by developers or the business. Using a behaviour driven development approach, we can define our security requirements to scenario based tests in Gherkin, making it easy for developers and the business to understand the requirement. Security Operations teams or developers can then build scenario based tests as well as develop the associated lambda function for their custom Config Rule. The Rules Development Kit (RDK) for Config Rules is an open-source command-line utility designed to help you shorten the development time of custom Config Rules by up to 5 times. In this session, we'll cover how to use the RDK to write unit tests and build the lambda functions for the custom Config Rule in python, and ensure it behaves as per our requirements defined in Gherkin. What to expect: Learn AWS Config and Config Rules Concepts Understand best practice and concepts on behaviour driven development for config rules Learn to develop lambda functions for config rules in python using the Rules Development Kit (RDK) Discover how to securely set up your environment for deployments

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Amazon Web Services

Understanding AWS Secrets Manager - AWS Online Tech Talks

Understanding AWS Secrets Manager - AWS Online Tech Talks

Understanding AWS Secrets Manager - AWS Online Tech Talks

Amazon Web Services

Secure Management of Fleet at Scale

Secure Management of Fleet at Scale

Secure Management of Fleet at Scale

Amazon Web Services

by Leo Zhadanovsky, Principal Solutions Architect, AWS Amazon EC2 Systems Manager is a management service that helps you securely and safely manage instances at scale, automatically collect software inventory, apply operating system patches, create system images, and configure Windows and Linux operating systems. These capabilities help you define and track system configurations, prevent drift, and maintain software compliance of your Amazon EC2 and on-premises configurations. By providing a management approach that is designed for the scale and agility of the cloud but extends into your on-premises data center, Systems Manager makes it easier for you to seamlessly bridge your existing infrastructure with AWS.

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

** AWS Architect Certification Training: https://www.edureka.co/cloudcomputing ** This Edureka "AWS CloudFront” tutorial will introduce you to the fundamentals of AWS CloudFront and also explain various Content Delivery concepts. Following is the list of content covered in this session: 1. What Is AWS? 2. Need For AWS CloudFront 3. What Is AWS CloudFront? 4. How Content Gets Delivered? 5. AWS CloudFront Applications 6. Demo- AWS CloudFront Distribution

What's hot (20)

Tips and Tricks for Running Container Workloads on AWS

Tips and Tricks for Running Container Workloads on AWS

Tips and Tricks for Running Container Workloads on AWS

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

How BrightEdge Achieves End-to-End Security Visibility with Splunk and AWS

Detective Controls: Gain Visibility and Record Change

Detective Controls: Gain Visibility and Record Change

Detective Controls: Gain Visibility and Record Change

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

Achieving Continuous Compliance using AWS Config - AWS Public Sector Summit S...

SRV318_Research at PNNL Powered by AWS

SRV318_Research at PNNL Powered by AWS

SRV318_Research at PNNL Powered by AWS

Infrastructure Security: Your Minimum Security Baseline

Infrastructure Security: Your Minimum Security Baseline

Infrastructure Security: Your Minimum Security Baseline

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Introduction to the Security Perspective of the Cloud Adoption Framework (CAF)

Incident Response: Preparing and Simulating Threat Response

Incident Response: Preparing and Simulating Threat Response

Incident Response: Preparing and Simulating Threat Response

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Build Cloud-Connected Apps in React Native for iOS & Android.pdf

Maturing your organization from DevOps to DevSecOps

Maturing your organization from DevOps to DevSecOps

Maturing your organization from DevOps to DevSecOps

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Securing Your Desktops with Amazon WorkSpaces - AWS Online Tech Talks

Identity and Access Management: The First Step in AWS Security

Identity and Access Management: The First Step in AWS Security

Identity and Access Management: The First Step in AWS Security

SID301_Using AWS Lambda as a Security Team

SID301_Using AWS Lambda as a Security Team

SID301_Using AWS Lambda as a Security Team

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Easily transform compliance to code using AWS Config, Config Rules, and the R...

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Module 3: Security, Identity and Access Management - AWSome Day Online Confer...

Understanding AWS Secrets Manager - AWS Online Tech Talks

Understanding AWS Secrets Manager - AWS Online Tech Talks

Understanding AWS Secrets Manager - AWS Online Tech Talks

Secure Management of Fleet at Scale

Secure Management of Fleet at Scale

Secure Management of Fleet at Scale

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

AWS CloudFront | Creating Amazon CloudFront Distribution | AWS Training | Edu...

Viewers also liked

Keynote - Security is Coming

Keynote - Security is Coming

Keynote - Security is Coming

Amazon Web Services

While winter is indeed coming, we are not going to talk about the King of the North. John Snow, English Physician, is considered one of the fathers of modern epidemiology, in part because of his work in tracing the source of a cholera outbreak in Soho, London, in 1854. We will take a look at how much of what he discovered about disease and its spread and containment can apply to modern cloud computing and security hygiene. We will review the best practices that AWS recommends for customers, beginning with a foundation of Shared Responsibility and extending to the application of frameworks which enable good cloud health. Attendees will gain insight in ways to “remove the pump handles” on their cloud deployments.

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Amazon Web Services

AWS has a large and growing portfolio of big data management and analytics services, designed to be integrated into solution architectures that meet the needs of your business. In this session, we look at analytics through the eyes of a business intelligence analyst, a data scientist, and an application developer, and we explore how to quickly leverage Amazon Redshift, Amazon QuickSight, RStudio, and Amazon Machine Learning to create powerful, yet straightforward, business solutions. Speaker: Paul Armstrong, Solutions Architect, Amazon Web Services

Soup to Nuts: Identity Federation for AWS

Soup to Nuts: Identity Federation for AWS

Soup to Nuts: Identity Federation for AWS

Amazon Web Services

AWS offers customers multiple solutions for federating identities on the AWS Cloud. In this session, we will embark on a tour of these solutions and the use cases they support. Along the way, we will dive deep with demonstrations and best practices to help you be successful managing identities on the AWS Cloud. We will cover how and when to use Security Assertion Markup Language 2.0 (SAML), OpenID Connect (OIDC), and other AWS native federation mechanisms. You will learn how these solutions enable federated access to the AWS Management Console, APIs, and CLI, AWS Infrastructure and Managed Services, your web and mobile applications running on the AWS Cloud, and much more.

Getting Started with Amazon EC2 Container Service

Getting Started with Amazon EC2 Container Service

Getting Started with Amazon EC2 Container Service

Amazon Web Services

Automating Big Data Technologies for Faster Time-to-Value

Automating Big Data Technologies for Faster Time-to-Value

Automating Big Data Technologies for Faster Time-to-Value

Amazon Web Services

Big data technologies can be extremely complex and require manual operation. If you can intelligently automate your Big Data operations then you can lower your costs, make your team more productive, scale more efficiently, and lower the risk of failure. Demandbase, creator of a targeting and personalization platform for business-to-business (B2B) companies, uses Qubole and a data lake on AWS to reduce the management complexities and costs of processing and analyzing their data. Hear how Qubole empowers Demandbase to analyze trillions of rows of structured and unstructured data in real time, making their data scientists and data engineers productive since day one.

Managing Container Images with Amazon ECR - AWS Online Tech Talks

Managing Container Images with Amazon ECR - AWS Online Tech Talks

Managing Container Images with Amazon ECR - AWS Online Tech Talks

Amazon Web Services

Cloud Economics; How to Quantify the Benefits of Moving to the Cloud - Transf...

Cloud Economics; How to Quantify the Benefits of Moving to the Cloud - Transf...

Cloud Economics; How to Quantify the Benefits of Moving to the Cloud - Transf...

Amazon Web Services

Most likely, your organization is not in the business of running data centers, yet a significant amount of time and money is spent doing just that. Amazon Web Services provides a way to acquire and use infrastructure on-demand, so that you pay only for what you consume. This puts more money back into the business, so that you can innovate more, expand faster, and be better positioned to take advantage of new opportunities. Speaker: Matt Johnson, Solutions Architect, Amazon Web Services

Building Chatbots with Amazon Lex

Building Chatbots with Amazon Lex

Building Chatbots with Amazon Lex

Amazon Web Services

Getting Started with Serverless Apps

Getting Started with Serverless Apps

Getting Started with Serverless Apps

Amazon Web Services

Serverless by Example: Building a Real-Time Chat System

Serverless by Example: Building a Real-Time Chat System

Serverless by Example: Building a Real-Time Chat System

Amazon Web Services

Delivering DevOps on AWS - Transformation Day Public Sector London 2017

Delivering DevOps on AWS - Transformation Day Public Sector London 2017

Delivering DevOps on AWS - Transformation Day Public Sector London 2017

Amazon Web Services

Software release cycles are now measured in days, rather than months. Cutting-edge companies continually deliver high-quality software at a fast pace to remain competitive. In this session, we cover how you can begin your DevOps journey by sharing best practices and tools used by Amazon’s two pizza engineering teams. We’ll showcase how you can accelerate developer productivity by implementing continuous integration and delivery workflows. We’ll also provide an introduction to AWS CodeStar, AWS CodeCommit, AWS CodeBuild, AWS CodePipeline, and AWS CodeDeploy – the services inspired by Amazon's internal developer tools and DevOps practice. Speaker: Mario Vlachakis, Solutions Architect, Amazon Web Services

Deep Dive on Amazon DynamoDB - AWS Online Tech Talks

Deep Dive on Amazon DynamoDB - AWS Online Tech Talks

Deep Dive on Amazon DynamoDB - AWS Online Tech Talks

Amazon Web Services

Using AWS CloudTrail and AWS Config to Enhance Governance and Compliance of A...

Using AWS CloudTrail and AWS Config to Enhance Governance and Compliance of A...

Using AWS CloudTrail and AWS Config to Enhance Governance and Compliance of A...

Amazon Web Services

As organizations move their workloads to the cloud, companies must take steps to protect and audit their private and confidential information. This session will focus on Amazon S3 best practices and using AWS Config rules and AWS CloudTrail Data Events to help better protect data residing within S3. The session will include a demonstration to show how Config and CloudTrail, in combination with other AWS Services, can help with S3 governance and compliance requirements.

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

Amazon Web Services

Whether you are a traditional enterprise exploring migrating workloads to the cloud or are already “all-in” on AWS, performing common tasks of inventory collection, OS patch management, and image creation at scale is increasingly complicated in hybrid infrastructure environments. Amazon EC2 Systems Manager allows you to perform automated configuration and ongoing management of your hybrid environment systems at scale. This session provides an overview of key EC2 Systems Manager capabilities that help you define and track system configurations, prevent drift, and maintain software compliance of your EC2 and on-premises configurations. We will also discuss common use cases for EC2 Systems Manager and give you a demonstration of a hybrid-cloud management scenario.

AWS re:Invent 2016: [JK REPEAT] Deep Dive on Amazon EC2 Instances, Featuring ...

AWS re:Invent 2016: [JK REPEAT] Deep Dive on Amazon EC2 Instances, Featuring ...

AWS re:Invent 2016: [JK REPEAT] Deep Dive on Amazon EC2 Instances, Featuring ...

Amazon Web Services

Amazon EC2 provides a broad selection of instance types to accommodate a diverse mix of workloads. In this session, we provide an overview of the Amazon EC2 instance platform, key platform features, and the concept of instance generations. We dive into the current generation design choices of the different instance families, including the General Purpose, Compute Optimized, Storage Optimized, Memory Optimized, and GPU instance families. We also detail best practices and share performance tips for getting the most out of your Amazon EC2 instances.

AWS re:Invent 2016: Advanced Tips for Amazon EC2 Networking and High Availabi...

AWS re:Invent 2016: Advanced Tips for Amazon EC2 Networking and High Availabi...

AWS re:Invent 2016: Advanced Tips for Amazon EC2 Networking and High Availabi...

Amazon Web Services

Amazon Virtual Private Cloud

Amazon Virtual Private Cloud

Amazon Virtual Private Cloud

Amazon Web Services

AWSome Day | Tech Track

AWSome Day | Tech Track

AWSome Day | Tech Track

Amazon Web Services

AwSome day 分享

Introduction to AWS

Introduction to AWS

Introduction to AWS

Amazon Web Services

Viewers also liked (20)

Keynote - Security is Coming

Keynote - Security is Coming

Keynote - Security is Coming

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Analytics on AWS with Amazon Redshift, Amazon QuickSight, and Amazon Machine ...

Soup to Nuts: Identity Federation for AWS

Soup to Nuts: Identity Federation for AWS

Soup to Nuts: Identity Federation for AWS

Getting Started with Amazon EC2 Container Service

Getting Started with Amazon EC2 Container Service

Getting Started with Amazon EC2 Container Service

Automating Big Data Technologies for Faster Time-to-Value

Automating Big Data Technologies for Faster Time-to-Value

Automating Big Data Technologies for Faster Time-to-Value

Managing Container Images with Amazon ECR - AWS Online Tech Talks

Managing Container Images with Amazon ECR - AWS Online Tech Talks

Managing Container Images with Amazon ECR - AWS Online Tech Talks

Cloud Economics; How to Quantify the Benefits of Moving to the Cloud - Transf...

Cloud Economics; How to Quantify the Benefits of Moving to the Cloud - Transf...

Cloud Economics; How to Quantify the Benefits of Moving to the Cloud - Transf...

Building Chatbots with Amazon Lex

Building Chatbots with Amazon Lex

Building Chatbots with Amazon Lex

Getting Started with Serverless Apps

Getting Started with Serverless Apps

Getting Started with Serverless Apps

Serverless by Example: Building a Real-Time Chat System

Serverless by Example: Building a Real-Time Chat System

Serverless by Example: Building a Real-Time Chat System

Delivering DevOps on AWS - Transformation Day Public Sector London 2017

Delivering DevOps on AWS - Transformation Day Public Sector London 2017

Delivering DevOps on AWS - Transformation Day Public Sector London 2017

Deep Dive on Amazon DynamoDB - AWS Online Tech Talks

Deep Dive on Amazon DynamoDB - AWS Online Tech Talks

Deep Dive on Amazon DynamoDB - AWS Online Tech Talks

Using AWS CloudTrail and AWS Config to Enhance Governance and Compliance of A...

Using AWS CloudTrail and AWS Config to Enhance Governance and Compliance of A...

Using AWS CloudTrail and AWS Config to Enhance Governance and Compliance of A...

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

ENT401 Deep Dive with Amazon EC2 Systems Manager

AWS re:Invent 2016: [JK REPEAT] Deep Dive on Amazon EC2 Instances, Featuring ...

AWS re:Invent 2016: [JK REPEAT] Deep Dive on Amazon EC2 Instances, Featuring ...

AWS re:Invent 2016: [JK REPEAT] Deep Dive on Amazon EC2 Instances, Featuring ...

AWS re:Invent 2016: Advanced Tips for Amazon EC2 Networking and High Availabi...

AWS re:Invent 2016: Advanced Tips for Amazon EC2 Networking and High Availabi...

AWS re:Invent 2016: Advanced Tips for Amazon EC2 Networking and High Availabi...

Amazon Virtual Private Cloud

Amazon Virtual Private Cloud

Amazon Virtual Private Cloud

AWSome Day | Tech Track

AWSome Day | Tech Track

AWSome Day | Tech Track

AwSome day 分享

Introduction to AWS

Introduction to AWS

Introduction to AWS

Similar to Automating Amazon Inspector Assessments and Findings Remediation

AWS December 2015 Webinar Series - Introducing Amazon Inspector

AWS December 2015 Webinar Series - Introducing Amazon Inspector

AWS December 2015 Webinar Series - Introducing Amazon Inspector

Amazon Web Services

Amazon Inspector is a new service from AWS that helps you identify security issues in the applications that you deploy and run on AWS. Use Amazon Inspector to assess the security posture of the Amazon EC2 instances running your applications, in order to identify areas that can be improved before you expose them to a production threat environment. This webinar will cover getting started with Amazon Inspector, how to automate the process, how to manage and act on findings, and additional ways you can enhance your development and release lifecycle using Amazon Inspector. Learning Objectives: Understand the basics of Amazon Inspector Learn how to assess your security posture and identify areas that can be improved Who Should Attend: Security professionals, people who are responsible for host or application security, and anyone interested in standards compliance

(SEC324) NEW! Introducing Amazon Inspector

(SEC324) NEW! Introducing Amazon Inspector

(SEC324) NEW! Introducing Amazon Inspector

Amazon Web Services

"Amazon Inspector is a new service from AWS that identifies security issues in your application deployments. Use Inspector with your applications to assess your security posture and identify areas that can be improved. Inspector works with your Amazon EC2 instances to monitor activity in your applications and system. This session will cover getting started with Inspector, how to automate the process, how to manage and act on findings, and additional ways you can enhance your development and release lifecycle using Inspector."

Inspector

Sudipto Chakraborty

Inspector

Sudipto Chakraborty

Waking the Data Scientist at 2am: Detect Model Degradation on Production Mod...

Waking the Data Scientist at 2am: Detect Model Degradation on Production Mod...

Waking the Data Scientist at 2am: Detect Model Degradation on Production Mod...

Waking the Data Scientist at 2am: Detect Model Degradation on Production Models with Amazon SageMaker Endpoints & Model Monitor In this talk, I describe how to deploy a model into production and monitor its performance using SageMaker Model Monitor. With Model Monitor, I can detect if a model's predictive performance has degraded - and alert an on-call data scientist to take action and improve the model at 2am while the DevOps folks sleep soundly through the night. Topics: AI and Machine Learning, Model Deployment, Anomaly Detection, Amazon SageMaker Endpoints, and Model Monitor

Diving into the World of Test Automation The Approach and the Technologies

Diving into the World of Test Automation The Approach and the Technologies

Diving into the World of Test Automation The Approach and the Technologies

This presentation was originally given at Quality Jam London. Elise covered test automation and the progression for test automation that you might encounter. The session agenda included: The stages of the test team Why are we automating? What are we automating? How are we automating? What languages should we use? What frameworks and libraries should we use? Open source or proprietary? Learn more at www.qualityjam.com

UI Test Cases With CloudStack

UI Test Cases With CloudStack

UI Test Cases With CloudStack

Each Cloudstack update is a critical process to prevent production issues. At DIMSI, we aim to reduce downtimes and regressions as much as possible for our end users. We are now implementing automated UI Tests to cover all main use cases whenever a new release is published. Navid and Magali give an overview of how it is being done, and the next steps, including potential integration inside the code project. Magali Pervan Senior Scrumaster, DIMSI partner, Magali is in charge of agility at DIMSI. She helps all project teams to work together in a smooth and efficient atmosphere When not delivering projects on track and on time, she loves traveling around the world to discover other cultures. Navid Abdoul Junior platform engineer, Navid joined DIMSI last summer to help us provide maximum performance and uptime to our customers He is dedicated to guaranteeing fast and reliable customer VM’s backup When not playing with video games, Navid is watching action movies. ----------------------------------------- CloudStack Collaboration Conference 2022 took place on 14th-16th November in Sofia, Bulgaria and virtually. The day saw a hybrid get-together of the global CloudStack community hosting 370 attendees. The event hosted 43 sessions from leading CloudStack experts, users and skilful engineers from the open-source world, which included: technical talks, user stories, new features and integrations presentations and more.

4 florin coada - dast automation, more value for less work

4 florin coada - dast automation, more value for less work

4 florin coada - dast automation, more value for less work

Ievgenii Katsan

API Testing with Frisby and Mocha

API Testing with Frisby and Mocha

API Testing with Frisby and Mocha

Lyudmila Anisimova

How the Big Data of APM can Supercharge DevOps

How the Big Data of APM can Supercharge DevOps

How the Big Data of APM can Supercharge DevOps

CA Technologies

In the age where applications reign supreme, your organizations must be agile in application performance management and app development in order to meet the market demands and stay competitive. Even with mature APM solutions, developer, test and operations teams are strained by operational complexity, accelerated release schedules, and big data challenges to quickly find the root cause of issues affecting end user experience. The power of advanced analytics and data science can help us make the most of the vast cache of APM data we collect and help our DevOps teams supercharge user experience. It’s time to take some of the load off of our humans and let technology make it easier to focus on meaningful changes in user, application and system behavior. Analytics are becoming a valuable component of APM solutions to redefine triage, improve application quality, and delight the end-user. In a webcast on August 7th, 2014, Ken Godskind, Chief blogger and Analyst, APMExaminer.com shared how the big data of APM can supercharge your DevOps transformation. Chris Kline, Senior Director, CA Technologies followed Ken and discussed how the Advanced Behavior Analytics capability of CA APM can assist in this journey. Ken and Chris used this slide set during the webcast which can be viewed at http://goo.gl/TZYEuq

How to Build a Metrics-optimized Software Delivery Pipeline

How to Build a Metrics-optimized Software Delivery Pipeline

How to Build a Metrics-optimized Software Delivery Pipeline

Every company is under increased pressure to deliver software faster and better. The question is: “How do I get started?” Continuous firefighting is definitely not the answer! XebiaLabs and Dynatrace share a practical step-by-step approach to optimizing your delivery process so you can deploy better quality software faster! Learn: • Why you should move to a metric-driven pipeline! • Which key quality metrics to measure and how to integrate them to catch problems earlier • How to use, measure and report on these metrics • How finding architectural/quality issues earlier reduces cost spent investigating them

OWASP Open SAMM

OWASP Open SAMM

OWASP Open SAMM

Automated Security Testing (2)

Automated Security Testing (2)

Automated Security Testing (2)Srikanth Nellore

Building an Open Source AppSec Pipeline

Building an Open Source AppSec Pipeline

Building an Open Source AppSec Pipeline

Sustainable agile testing

Sustainable agile testing

Sustainable agile testing

The agile community has done a very good job over the last few years in re-thinking the software development process and practices. What about testing though ? Are we really agile about it ? For most companies testing and QAs are still a bottleneck. In this session we will explore practices and techniques which will enable us to bring testing to the next level. We will focus particurarly on the concept of acceptance tests driven development and the role played by the "software developer in test"

Automating Security Event Reponse

Automating Security Event Reponse

Automating Security Event Reponse

Amazon Web Services

With security-relevant services such as AWS Config, VPC Flow Logs, Amazon CloudWatch Events, and AWS Lambda, you now have the ability to automatically respond to and process security events that may occur within your AWS environment. These including prevention, detection, response, and remediation. This session covers the process of automating security event response using various AWS building blocks, gaining confidence in your coverage by proactively testing security monitoring and response effectiveness before anyone else does.

Getting Started with Amazon Inspector

Getting Started with Amazon Inspector

Getting Started with Amazon Inspector

Amazon Web Services

Amazon Inspector is a service from AWS that identifies security issues in your application deployments. Use Amazon Inspector with your applications to assess your security posture and identify areas that can be improved. Amazon Inspector works with your Amazon EC2 instances to monitor activity in your applications and system. This session will cover getting started with Amazon Inspector, how to automate the process, how to manage and act on findings, and additional ways you can enhance your development and release lifecycle.

Serverless in production, an experience report (NDC London, 31 Jan 2018)

Serverless in production, an experience report (NDC London, 31 Jan 2018)

Serverless in production, an experience report (NDC London, 31 Jan 2018)

Domas Lasauskas

AWS Lambda has changed the way we deploy and run software, but this new serverless paradigm has created new challenges to old problems - how do you test a cloud-hosted function locally? How do you monitor them? What about logging and config management? And how do we start migrating from existing architectures? In this talk Yan and Domas will discuss solutions to these challenges by drawing from real-world experience running Lambda in production and migrating from an existing monolithic architecture. Event: https://ndc-london.com/talk/serverless-in-production-an-experience-report/ Video: https://vimeo.com/254635750

Serverless in production, an experience report (NDC London 2018)

Serverless in production, an experience report (NDC London 2018)

Serverless in production, an experience report (NDC London 2018)

AWS Lambda has changed the way we deploy and run software, but this new serverless paradigm has created new challenges to old problems - how do you test a cloud-hosted function locally? How do you monitor them? What about logging and config management? And how do we start migrating from existing architectures? In this talk Yan and Domas will discuss solutions to these challenges by drawing from real-world experience running Lambda in production and migrating from an existing monolithic architecture.

Automated Acceptance Testing Example

Automated Acceptance Testing Example

Automated Acceptance Testing Example

Similar to Automating Amazon Inspector Assessments and Findings Remediation (20)

AWS December 2015 Webinar Series - Introducing Amazon Inspector

AWS December 2015 Webinar Series - Introducing Amazon Inspector

AWS December 2015 Webinar Series - Introducing Amazon Inspector

(SEC324) NEW! Introducing Amazon Inspector

(SEC324) NEW! Introducing Amazon Inspector

(SEC324) NEW! Introducing Amazon Inspector

Inspector

Inspector

Waking the Data Scientist at 2am: Detect Model Degradation on Production Mod...

Waking the Data Scientist at 2am: Detect Model Degradation on Production Mod...

Waking the Data Scientist at 2am: Detect Model Degradation on Production Mod...

Diving into the World of Test Automation The Approach and the Technologies

Diving into the World of Test Automation The Approach and the Technologies

Diving into the World of Test Automation The Approach and the Technologies

UI Test Cases With CloudStack

UI Test Cases With CloudStack

UI Test Cases With CloudStack

4 florin coada - dast automation, more value for less work

4 florin coada - dast automation, more value for less work

4 florin coada - dast automation, more value for less work

API Testing with Frisby and Mocha

API Testing with Frisby and Mocha

API Testing with Frisby and Mocha

How the Big Data of APM can Supercharge DevOps

How the Big Data of APM can Supercharge DevOps

How the Big Data of APM can Supercharge DevOps

How to Build a Metrics-optimized Software Delivery Pipeline

How to Build a Metrics-optimized Software Delivery Pipeline

How to Build a Metrics-optimized Software Delivery Pipeline

OWASP Open SAMM

OWASP Open SAMM

OWASP Open SAMM

Automated Security Testing (2)

Automated Security Testing (2)

Automated Security Testing (2)

Building an Open Source AppSec Pipeline

Building an Open Source AppSec Pipeline

Building an Open Source AppSec Pipeline

Sustainable agile testing

Sustainable agile testing

Sustainable agile testing

Automating Security Event Reponse

Automating Security Event Reponse

Automating Security Event Reponse

Getting Started with Amazon Inspector

Getting Started with Amazon Inspector

Getting Started with Amazon Inspector

Serverless in production, an experience report (NDC London, 31 Jan 2018)

Serverless in production, an experience report (NDC London, 31 Jan 2018)

Serverless in production, an experience report (NDC London, 31 Jan 2018)

Serverless in production, an experience report (NDC London 2018)

Serverless in production, an experience report (NDC London 2018)

Serverless in production, an experience report (NDC London 2018)

Automated Acceptance Testing Example

Automated Acceptance Testing Example

Automated Acceptance Testing Example

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Amazon Web Services

Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS. In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Amazon Web Services

La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup. Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti. Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.

Esegui pod serverless con Amazon EKS e AWS Fargate

Esegui pod serverless con Amazon EKS e AWS Fargate

Esegui pod serverless con Amazon EKS e AWS Fargate

Amazon Web Services

Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi

Costruire Applicazioni Moderne con AWS

Costruire Applicazioni Moderne con AWS

Costruire Applicazioni Moderne con AWS

Amazon Web Services

Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.

Come spendere fino al 90% in meno con i container e le istanze spot

Come spendere fino al 90% in meno con i container e le istanze spot

Come spendere fino al 90% in meno con i container e le istanze spot

Amazon Web Services

L’utilizzo dei container è in continua crescita. Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili. I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!

Open banking as a service

Open banking as a service

Open banking as a service

Amazon Web Services

In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th. Event Agenda : Open banking so far (short recap) • PSD2, OB UK, OB Australia, OB LATAM, OB Israel Intro to Open Finance marketplace • Scope • Features • Tech overview and Demo The role of the Cloud The Future of APIs • Complying with regulation • Monetizing data / APIs • Business models • Time to market One platform for all: a Strategic approach Q&A

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

Amazon Web Services

Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc. AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta. Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

Amazon Web Services

Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity. AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet. Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Amazon Web Services

Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.

Computer Vision con AWS

Computer Vision con AWS

Computer Vision con AWS

Amazon Web Services

Database Oracle e VMware Cloud on AWS i miti da sfatare

Database Oracle e VMware Cloud on AWS i miti da sfatare

Database Oracle e VMware Cloud on AWS i miti da sfatare

Amazon Web Services

Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti. Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi. La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

Amazon Web Services

Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti. Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire. Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito. In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.

API moderne real-time per applicazioni mobili e web

API moderne real-time per applicazioni mobili e web

API moderne real-time per applicazioni mobili e web

Amazon Web Services

Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline. Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Amazon Web Services

Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi. La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali. In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.

Tools for building your MVP on AWS

Tools for building your MVP on AWS

Tools for building your MVP on AWSAmazon Web Services

How to Build a Winning Pitch Deck

How to Build a Winning Pitch Deck

How to Build a Winning Pitch DeckAmazon Web Services

Building a web application without servers

Building a web application without servers

Building a web application without serversAmazon Web Services

Fundraising Essentials

Fundraising Essentials

Fundraising EssentialsAmazon Web Services

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services

Introduzione a Amazon Elastic Container Service

Introduzione a Amazon Elastic Container Service

Introduzione a Amazon Elastic Container Service

Amazon Web Services

Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Esegui pod serverless con Amazon EKS e AWS Fargate

Esegui pod serverless con Amazon EKS e AWS Fargate

Esegui pod serverless con Amazon EKS e AWS Fargate

Costruire Applicazioni Moderne con AWS

Costruire Applicazioni Moderne con AWS

Costruire Applicazioni Moderne con AWS

Come spendere fino al 90% in meno con i container e le istanze spot

Come spendere fino al 90% in meno con i container e le istanze spot

Come spendere fino al 90% in meno con i container e le istanze spot

Open banking as a service

Open banking as a service

Open banking as a service

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Computer Vision con AWS

Computer Vision con AWS

Computer Vision con AWS

Database Oracle e VMware Cloud on AWS i miti da sfatare

Database Oracle e VMware Cloud on AWS i miti da sfatare

Database Oracle e VMware Cloud on AWS i miti da sfatare

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

API moderne real-time per applicazioni mobili e web

API moderne real-time per applicazioni mobili e web

API moderne real-time per applicazioni mobili e web

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Tools for building your MVP on AWS

Tools for building your MVP on AWS

Tools for building your MVP on AWS

How to Build a Winning Pitch Deck

How to Build a Winning Pitch Deck

How to Build a Winning Pitch Deck

Building a web application without servers

Building a web application without servers

Building a web application without servers

Fundraising Essentials

Fundraising Essentials

Fundraising Essentials

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

Introduzione a Amazon Elastic Container Service

Introduzione a Amazon Elastic Container Service

Introduzione a Amazon Elastic Container Service

Automating Amazon Inspector Assessments and Findings Remediation

1. Eric Fitzgerald, Principal Engineer, Amazon Inspector November 09, 2017 Session TitleAmazon Inspector automating security assessments & managing findings

2. What to Expect from the Session Amazon Confidential • Brief overview of Amazon Inspector • Lab 1: Methods for automating Amazon Inspector agent installations • Lab 2: Automatic security assessment triggers • Lab 3: Automated findings remediation • Q&A What are we going to do?

3. Amazon Confidential What is Amazon Inspector? • Security & vulnerability assessment • Host-based analysis • OS and Applications • Findings contain remediation suggestion • Security best practice

4. Amazon Confidential Why launch Amazon Inspector? Our customers asked us to: • Complement shared security model • Automatable • DevSecOps

5. Amazon Confidential Key Concepts for Inspector Inspector Agent Assessment Targets Assessment Template Rules Packages Triggers & Runs Findings & Reports

6. Amazon Confidential Installing & Running Assessments Hands on Lab #1

7. Amazon Confidential Inspector 101 https://docs.aws.amazon.com/inspector/latest/userguide/ inspector_quickstart.html

8. Amazon Confidential Automated Assessment Hands on Lab #2

9. Amazon Confidential Scheduling Assessments https://docs.aws.amazon.com/inspector/latest/userguide/ inspector_assessments.html#assessment_runs- schedule

10. Amazon Confidential Automating Remediation Hands on Lab #3

11. Amazon Confidential Automated Remediation https://aws.amazon.com/blogs/security/how-to-remediate- amazon-inspector-security-findings-automatically/