Throughout your journey to the AWS Cloud, you will encounter and rely on a number of AWS identity services. In this session, we provide an overview of AWS identity services within the context of a typical cloud journey. Learn about each service, the capabilities it provides, and how the services fit and work together to provide you with a robust foundation and enable you to advance your journey with confidence and speed. Finally, we take a deeper look at a number of identity-based use cases, where the power and programmability of the cloud is radically simplifying implementation and strengthening security.
Simplify compliance & improve operational efficiency with AWS - SVC302 - Sant...Amazon Web Services
In this session, learn how AWS helps customers effectively manage and govern their infrastructure and resources, simplifying compliance and improving efficiency when completing operational tasks. Come hear Anik Mazumder, principal infrastructure architect at Intuit, speak about his company’s experience. We also share some of the latest innovation from AWS Config in this space, and we cover recent releases in AWS management and governance services.
How Millennium Management achieves provable security with AWS Zelkova - FSV30...Amazon Web Services
Data exfiltration is a key concern for financial institutions, which often store personally identifiable information, payment card information, and proprietary methods or algorithms. Balancing security and agility in identity and access management (IAM) policies is critical. To achieve this balance, Millennium Management developed a security framework that integrates into CI/CD pipelines. This framework utilizes semantic reasoning, proprietary security evaluations, and AWS Zelkova to achieve provably secure IAM policies pre-deployment in a distributed, multi-account environment. Learn how Millennium combined Zelkova with services such as AWS Step Functions, AWS Lambda, and AWS CodePipeline—for rapid development while mitigating data exfiltration risk.
Designing security & governance via AWS Control Tower & Organizations - SEC30...Amazon Web Services
Whether it is per business unit or per application, many AWS customers use multiple accounts to meet their infrastructure isolation, separation of duties, and billing requirements. In this session, we cover considerations, limitations, and security patterns when building a multi-account strategy. We explore topics such as thought pattern, identity federation, cross-account roles, consolidated logging, and account governance. We conclude by presenting an enterprise-ready landing-zone framework and providing the background needed to implement an AWS Landing Zone using AWS Control Tower and AWS Organizations.
A tale of two customers - Simplified data protection with Veeam, N2WS & AWS -...Amazon Web Services
When you move backups to AWS and manage data protection across on-premises and cloud environments, there are many things you need to consider. Veeam and N2WS (a Veeam company) enable data protection and portability to the AWS Cloud with enterprise-class backup and disaster recovery. In this demo session, learn how two customers scale on the AWS Cloud by leveraging Veeam and N2WS to protect thousands of Amazon EC2 instances with native snapshot-based backups and automated data lifecycling to Amazon S3. Learn how to back up, restore, and protect production databases and workloads with N2WS Backup & Recovery and the new Veeam Availability for AWS.
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
In this session, we first cover build-out and design fundamentals for VPCs, including selecting your IP space, subnetting, routing, security, and more. We then discuss different approaches and scenarios for connecting your VPC to your data center with AWS VPN or AWS Direct Connect. Throughout this presentation, we discuss our latest networking services and updates, including AWS Transit Gateway and AWS PrivateLink. This mid-level architecture discussion is for architects, network administrators, and technology decision makers interested in understanding the building blocks that AWS makes available with Amazon VPC. Learn how to connect VPCs with your offices and data center footprint.
Threat detection and mitigation at AWS - SEC301 - Santa Clara AWS SummitAmazon Web Services
In this session, learn how to address threat detection and remediation at AWS. We summarize the challenges of traditional threat detection efforts and explain how AWS helps you address them in a cloud environment. We also provide an overview of key AWS
Journey into the Cloud with VMware Cloud on AWS: Deep Dive - CMP303 - Anaheim...Amazon Web Services
Customers use VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their DR environments. VMware Cloud on AWS offers the opportunity to augment and evolve existing and legacy applications. Learn how VMware Cloud on AWS can help build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices for protecting and scaling your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing. Learn how to bring your entire IT landscape closer to your digital innovation goals.
Simplify compliance & improve operational efficiency with AWS - SVC302 - Sant...Amazon Web Services
In this session, learn how AWS helps customers effectively manage and govern their infrastructure and resources, simplifying compliance and improving efficiency when completing operational tasks. Come hear Anik Mazumder, principal infrastructure architect at Intuit, speak about his company’s experience. We also share some of the latest innovation from AWS Config in this space, and we cover recent releases in AWS management and governance services.
How Millennium Management achieves provable security with AWS Zelkova - FSV30...Amazon Web Services
Data exfiltration is a key concern for financial institutions, which often store personally identifiable information, payment card information, and proprietary methods or algorithms. Balancing security and agility in identity and access management (IAM) policies is critical. To achieve this balance, Millennium Management developed a security framework that integrates into CI/CD pipelines. This framework utilizes semantic reasoning, proprietary security evaluations, and AWS Zelkova to achieve provably secure IAM policies pre-deployment in a distributed, multi-account environment. Learn how Millennium combined Zelkova with services such as AWS Step Functions, AWS Lambda, and AWS CodePipeline—for rapid development while mitigating data exfiltration risk.
Designing security & governance via AWS Control Tower & Organizations - SEC30...Amazon Web Services
Whether it is per business unit or per application, many AWS customers use multiple accounts to meet their infrastructure isolation, separation of duties, and billing requirements. In this session, we cover considerations, limitations, and security patterns when building a multi-account strategy. We explore topics such as thought pattern, identity federation, cross-account roles, consolidated logging, and account governance. We conclude by presenting an enterprise-ready landing-zone framework and providing the background needed to implement an AWS Landing Zone using AWS Control Tower and AWS Organizations.
A tale of two customers - Simplified data protection with Veeam, N2WS & AWS -...Amazon Web Services
When you move backups to AWS and manage data protection across on-premises and cloud environments, there are many things you need to consider. Veeam and N2WS (a Veeam company) enable data protection and portability to the AWS Cloud with enterprise-class backup and disaster recovery. In this demo session, learn how two customers scale on the AWS Cloud by leveraging Veeam and N2WS to protect thousands of Amazon EC2 instances with native snapshot-based backups and automated data lifecycling to Amazon S3. Learn how to back up, restore, and protect production databases and workloads with N2WS Backup & Recovery and the new Veeam Availability for AWS.
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
In this session, we first cover build-out and design fundamentals for VPCs, including selecting your IP space, subnetting, routing, security, and more. We then discuss different approaches and scenarios for connecting your VPC to your data center with AWS VPN or AWS Direct Connect. Throughout this presentation, we discuss our latest networking services and updates, including AWS Transit Gateway and AWS PrivateLink. This mid-level architecture discussion is for architects, network administrators, and technology decision makers interested in understanding the building blocks that AWS makes available with Amazon VPC. Learn how to connect VPCs with your offices and data center footprint.
Threat detection and mitigation at AWS - SEC301 - Santa Clara AWS SummitAmazon Web Services
In this session, learn how to address threat detection and remediation at AWS. We summarize the challenges of traditional threat detection efforts and explain how AWS helps you address them in a cloud environment. We also provide an overview of key AWS
Journey into the Cloud with VMware Cloud on AWS: Deep Dive - CMP303 - Anaheim...Amazon Web Services
Customers use VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their DR environments. VMware Cloud on AWS offers the opportunity to augment and evolve existing and legacy applications. Learn how VMware Cloud on AWS can help build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices for protecting and scaling your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing. Learn how to bring your entire IT landscape closer to your digital innovation goals.
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitAmazon Web Services
The Twelve-Factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the Twelve-Factor model prescribes practices that apply to everything from web applications to APIs to data-processing applications. Although serverless computing and AWS Lambda have changed application development, the Twelve-Factor methodology remains relevant and applicable in a serverless world. In this talk, we apply the Twelve-Factor model to serverless application development with Lambda and Amazon API Gateway, and we demonstrate how these services enable you to build scalable, well-built, low-administration applications.
The evolution of continuous cloud security and compliance - DEM05-S - New Yor...Amazon Web Services
With the ongoing expansion of cloud transformation, the different stages of cloud adoption become instrumental in achieving successful adoption of cloud infrastructure and services. When considering each stage, it’s important to overlay the proper security framework alongside continuous monitoring to provide the necessary security outcomes for an optimal security posture. In this session, we describe how to deliver outcomes of continuous security and compliance through a security wrapper delivered through infrastructure as code. This presentation is brought to you by AWS partner, Armor Cloud Security.
Database Freedom is an AWS initiative that accelerates enterprise migrations from commercial database engines to AWS native database services or managed open-source systems. We review the basics of the Amazon purpose-built database strategy and cover our Workload Qualification Framework, which helps you determine a good database migration candidate and predict the level of effort. In the hands-on lab, you use AWS Schema Conversion Tool and AWS Database Migration Service to migrate your databases to Amazon Aurora PostgreSQL. Bring a laptop with Firefox or Chrome and a working AWS account. We provide an AWS CloudFormation template to configure the lab environment.
Safeguard the Integrity of Your Code for Fast and Secure Deployments - SVC206...Amazon Web Services
As companies employ DevOps practices to push applications faster into production through better collaboration and automated testing, security is often seen as an inhibitor to speed. The challenge for many organizations is getting applications delivered at a fast pace while embedding security at the speed of DevOps. In this session, learn how AWS Marketplace products and customers help make DevSecOps a well-orchestrated methodology for ensuring the speed, stability, and security of your applications.
Compliance automation: Set it up fast, then code it your way - GRC330-R - AWS...Amazon Web Services
In this workshop, learn how to detect common resource misconfigurations using AWS Security Hub; how to extend coverage by deploying additional sets of existing rules or your own custom AWS Config rules using our Rule Development Kit (written in Python); and how to automatically remediate compliance violations when they are detected. Python basic skills and a basic understanding of boto3 are required for the coding portion of this workshop.
Building Enterprise Solutions with Blockchain and Ledger Technology - SVC202 ...Amazon Web Services
Blockchain technology is rapidly evolving. Are you ready to take advantage of blockchain's use cases for the enterprise? In this session, learn how AWS views blockchain and ledger technology, discover our new services, Amazon Managed Blockchain and Amazon QLDB, and understand how to use their features.
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
Customers are using VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their disaster recovery environments. VMware Cloud on AWS brings a new dimension of hybrid cloud and mixed architecture to many customers, offering the opportunity for augmenting and evolving existing and legacy applications. Learn how VMware Cloud on AWS helps build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices to protect and scale your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing.
Enable Agile Development with Amazon Linux WorkSpaces and WorkLink - SVC203 -...Amazon Web Services
Developers today still spend too much time provisioning the resources they need to write code. Additionally, developing mobile and desktop applications for multiple OS and browser platforms slows down application delivery. In this session, we discuss how developers can use AWS end user computing services to save money on developer desktops and simplify application delivery for mobile and desktop applications. We go through best practices for deploying Amazon Linux WorkSpaces for your development teams. We also provide an in-depth discussion on our newest service, Amazon WorkLink, which provides secure access to company websites and web applications.
In this session we will focus on accounts operations best practices, how to setup your account to reduce operational risks and how to make your operations easier using various tools including Systems Manager, Trusted Advisor, Personal Health Dashboard, AWS config and more. SundaySky will present how they improve their operations with automated responce based on lessons learned.
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Amazon Web Services
Serverless architectures free customers to focus on solving business problems without the burden of managing infrastructure on AWS. However, building serverless applications requires a change in architectural thinking. In this talk, learn how to use powerful event-driven design patterns to architect highly scalable solutions that are enterprise-grade, robust, and cost effective. We showcase how to use AWS Lambda combined with messaging services, such as Amazon SQS and Amazon SNS, to improve time to market while delivering great quality service.
The twelve-factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the twelve-factor model prescribes best practices that apply to everything from web applications to APIs to data processing applications. Although serverless computing and AWS Lambda have changed application development, the twelve-factor best practices remain relevant and applicable in a serverless world. In this talk, we apply the twelve-factor model to serverless application development with AWS Lambda and Amazon API Gateway, and we show you how these services enable you to build scalable, well-built, low-administration applications.
Part 2 of 3.
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking.
AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one.
Who should attend?
AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Secure Your Data with Recommended Best Practices Enabled by AWS Security and ...Amazon Web Services
Security is a growing concern. Misconfigurations and inconsistent deployments provide opportunities for attackers to find vulnerabilities. This underscores the need to enforce policies as more and more production workloads move to the cloud.
In this session, discover how customers are using AWS Service Catalog as a layered defense and an in-depth mechanism to mitigate misconfigurations and variability in workload deployments. Additionally, learn how AWS Control Tower provides guardrails for policy enforcement to help customers like World Bank enforce security and manage compliance.
Speakers:
Kaushik Mohanty, Principal BD, Service Catalog and Control Tower, AWS
Durga Prasad, Manager, Solutions Architect, AWS
Move desktops & applications to AWS with Amazon WorkSpaces & AppStream 2.0 - ...Amazon Web Services
IT organizations today need to support a mobile, flexible, global workforce and ensure that their users can be productive anywhere. Moving desktops and applications to AWS offers improved security, scale, and performance with cloud economics. In this session, we provide an overview of Amazon WorkSpaces and Amazon AppStream 2.0, and we discuss the use cases for each. Then, we dive deep into best practices for implementing Amazon WorkSpaces and AppStream 2.0, including how to integrate with your existing identity, security, networking, and storage solutions.
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...Amazon Web Services
Companies are moving existing on-premises applications to the cloud as fast as possible to become more agile and lower costs. However, certain workloads must remain on-premises due to low latency or local data-processing requirements. AWS Outposts brings fully managed, native AWS services, infrastructure, and operating models to virtually any data center, co-location space, or on-premises facility. In this tech talk, we provide an introduction to AWS Outposts and how it works, as well as present customer use cases. We also explore ways to use AWS-cloud native APIs to support workloads that must remain on-premises for a truly consistent hybrid experience.
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Amazon Web Services
Northwestern Mutual’s technology teams maintain a complex compliance environment for a diverse set of developers working within more than 100 AWS accounts. To drive best practices and ensure continuous compliance, they designed an AWS-based architecture using services such as AWS Lambda, Amazon DynamoDB, Amazon Simple Queue Service (Amazon SQS), and Amazon CloudWatch to auto-remediate misconfigurations. In this session, we discuss how these services help Northwestern Mutual swiftly correct configurations and integrate with tools like Slack and Pagerduty to create logs, notify developers and account owners of changes, and track trends in remediation.
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...Amazon Web Services
In this session, we provide an overview of AWS identity services within the context of a typical cloud journey. Learn about each service, the high-level capabilities they provide, and how the services fit and work together to provide you a robust identity foundation. Learn how to better advance your own journey with confidence and speed. Finally, we take a deeper look at several identity-based use cases where the cloud’s power and programmability are radically simplifying implementation and strengthening security.
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ch...Amazon Web Services
In this session, we provide an overview of AWS identity services within the context of a typical cloud journey. We learn about each service, the high-level capabilities each provides, and how they all fit and work together to provide you with a robust identity foundation. We also learn how to better advance your own identity-services cloud journey with confidence and speed. Finally, we look more closely at several identity-based use cases where the power and programmability of the cloud is radically simplifying implementation and strengthening security.
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitAmazon Web Services
The Twelve-Factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the Twelve-Factor model prescribes practices that apply to everything from web applications to APIs to data-processing applications. Although serverless computing and AWS Lambda have changed application development, the Twelve-Factor methodology remains relevant and applicable in a serverless world. In this talk, we apply the Twelve-Factor model to serverless application development with Lambda and Amazon API Gateway, and we demonstrate how these services enable you to build scalable, well-built, low-administration applications.
The evolution of continuous cloud security and compliance - DEM05-S - New Yor...Amazon Web Services
With the ongoing expansion of cloud transformation, the different stages of cloud adoption become instrumental in achieving successful adoption of cloud infrastructure and services. When considering each stage, it’s important to overlay the proper security framework alongside continuous monitoring to provide the necessary security outcomes for an optimal security posture. In this session, we describe how to deliver outcomes of continuous security and compliance through a security wrapper delivered through infrastructure as code. This presentation is brought to you by AWS partner, Armor Cloud Security.
Database Freedom is an AWS initiative that accelerates enterprise migrations from commercial database engines to AWS native database services or managed open-source systems. We review the basics of the Amazon purpose-built database strategy and cover our Workload Qualification Framework, which helps you determine a good database migration candidate and predict the level of effort. In the hands-on lab, you use AWS Schema Conversion Tool and AWS Database Migration Service to migrate your databases to Amazon Aurora PostgreSQL. Bring a laptop with Firefox or Chrome and a working AWS account. We provide an AWS CloudFormation template to configure the lab environment.
Safeguard the Integrity of Your Code for Fast and Secure Deployments - SVC206...Amazon Web Services
As companies employ DevOps practices to push applications faster into production through better collaboration and automated testing, security is often seen as an inhibitor to speed. The challenge for many organizations is getting applications delivered at a fast pace while embedding security at the speed of DevOps. In this session, learn how AWS Marketplace products and customers help make DevSecOps a well-orchestrated methodology for ensuring the speed, stability, and security of your applications.
Compliance automation: Set it up fast, then code it your way - GRC330-R - AWS...Amazon Web Services
In this workshop, learn how to detect common resource misconfigurations using AWS Security Hub; how to extend coverage by deploying additional sets of existing rules or your own custom AWS Config rules using our Rule Development Kit (written in Python); and how to automatically remediate compliance violations when they are detected. Python basic skills and a basic understanding of boto3 are required for the coding portion of this workshop.
Building Enterprise Solutions with Blockchain and Ledger Technology - SVC202 ...Amazon Web Services
Blockchain technology is rapidly evolving. Are you ready to take advantage of blockchain's use cases for the enterprise? In this session, learn how AWS views blockchain and ledger technology, discover our new services, Amazon Managed Blockchain and Amazon QLDB, and understand how to use their features.
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
Customers are using VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their disaster recovery environments. VMware Cloud on AWS brings a new dimension of hybrid cloud and mixed architecture to many customers, offering the opportunity for augmenting and evolving existing and legacy applications. Learn how VMware Cloud on AWS helps build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices to protect and scale your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing.
Enable Agile Development with Amazon Linux WorkSpaces and WorkLink - SVC203 -...Amazon Web Services
Developers today still spend too much time provisioning the resources they need to write code. Additionally, developing mobile and desktop applications for multiple OS and browser platforms slows down application delivery. In this session, we discuss how developers can use AWS end user computing services to save money on developer desktops and simplify application delivery for mobile and desktop applications. We go through best practices for deploying Amazon Linux WorkSpaces for your development teams. We also provide an in-depth discussion on our newest service, Amazon WorkLink, which provides secure access to company websites and web applications.
In this session we will focus on accounts operations best practices, how to setup your account to reduce operational risks and how to make your operations easier using various tools including Systems Manager, Trusted Advisor, Personal Health Dashboard, AWS config and more. SundaySky will present how they improve their operations with automated responce based on lessons learned.
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Amazon Web Services
Serverless architectures free customers to focus on solving business problems without the burden of managing infrastructure on AWS. However, building serverless applications requires a change in architectural thinking. In this talk, learn how to use powerful event-driven design patterns to architect highly scalable solutions that are enterprise-grade, robust, and cost effective. We showcase how to use AWS Lambda combined with messaging services, such as Amazon SQS and Amazon SNS, to improve time to market while delivering great quality service.
The twelve-factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the twelve-factor model prescribes best practices that apply to everything from web applications to APIs to data processing applications. Although serverless computing and AWS Lambda have changed application development, the twelve-factor best practices remain relevant and applicable in a serverless world. In this talk, we apply the twelve-factor model to serverless application development with AWS Lambda and Amazon API Gateway, and we show you how these services enable you to build scalable, well-built, low-administration applications.
Part 2 of 3.
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking.
AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one.
Who should attend?
AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Secure Your Data with Recommended Best Practices Enabled by AWS Security and ...Amazon Web Services
Security is a growing concern. Misconfigurations and inconsistent deployments provide opportunities for attackers to find vulnerabilities. This underscores the need to enforce policies as more and more production workloads move to the cloud.
In this session, discover how customers are using AWS Service Catalog as a layered defense and an in-depth mechanism to mitigate misconfigurations and variability in workload deployments. Additionally, learn how AWS Control Tower provides guardrails for policy enforcement to help customers like World Bank enforce security and manage compliance.
Speakers:
Kaushik Mohanty, Principal BD, Service Catalog and Control Tower, AWS
Durga Prasad, Manager, Solutions Architect, AWS
Move desktops & applications to AWS with Amazon WorkSpaces & AppStream 2.0 - ...Amazon Web Services
IT organizations today need to support a mobile, flexible, global workforce and ensure that their users can be productive anywhere. Moving desktops and applications to AWS offers improved security, scale, and performance with cloud economics. In this session, we provide an overview of Amazon WorkSpaces and Amazon AppStream 2.0, and we discuss the use cases for each. Then, we dive deep into best practices for implementing Amazon WorkSpaces and AppStream 2.0, including how to integrate with your existing identity, security, networking, and storage solutions.
Introduction to AWS OutIntroduction to AWS Outposts - CMP203 - Chicago AWS Su...Amazon Web Services
Companies are moving existing on-premises applications to the cloud as fast as possible to become more agile and lower costs. However, certain workloads must remain on-premises due to low latency or local data-processing requirements. AWS Outposts brings fully managed, native AWS services, infrastructure, and operating models to virtually any data center, co-location space, or on-premises facility. In this tech talk, we provide an introduction to AWS Outposts and how it works, as well as present customer use cases. We also explore ways to use AWS-cloud native APIs to support workloads that must remain on-premises for a truly consistent hybrid experience.
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Amazon Web Services
Northwestern Mutual’s technology teams maintain a complex compliance environment for a diverse set of developers working within more than 100 AWS accounts. To drive best practices and ensure continuous compliance, they designed an AWS-based architecture using services such as AWS Lambda, Amazon DynamoDB, Amazon Simple Queue Service (Amazon SQS), and Amazon CloudWatch to auto-remediate misconfigurations. In this session, we discuss how these services help Northwestern Mutual swiftly correct configurations and integrate with tools like Slack and Pagerduty to create logs, notify developers and account owners of changes, and track trends in remediation.
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ne...Amazon Web Services
In this session, we provide an overview of AWS identity services within the context of a typical cloud journey. Learn about each service, the high-level capabilities they provide, and how the services fit and work together to provide you a robust identity foundation. Learn how to better advance your own journey with confidence and speed. Finally, we take a deeper look at several identity-based use cases where the cloud’s power and programmability are radically simplifying implementation and strengthening security.
AWS identity services: Enabling and securing your cloud journey - SEC203 - Ch...Amazon Web Services
In this session, we provide an overview of AWS identity services within the context of a typical cloud journey. We learn about each service, the high-level capabilities each provides, and how they all fit and work together to provide you with a robust identity foundation. We also learn how to better advance your own identity-services cloud journey with confidence and speed. Finally, we look more closely at several identity-based use cases where the power and programmability of the cloud is radically simplifying implementation and strengthening security.
Best practices for choosing identity solutions for applications + workloads -...Amazon Web Services
Identity requirements for consumer-facing applications differ significantly from those for workforce applications and cloud resources. Learn the best practices for choosing the right identity platform on AWS for your consumer-facing applications and for centrally managing access to all your business applications and AWS resources. Come learn about the proper use cases for implementing single sign-on (SSO) and Amazon Cognito, security best practices, and configuration guidance.
Most organizations are great at securing their network, operating system, databases, and applications. However, even for those organizations that have been in the cloud for a few years, many are still learning how to set up the proper mechanisms to identify, protect, detect, respond and recover at the AWS layer. We will explore services like AWS Identity and AWS Access and Identity Management (IAM), AWS Key Management Service (KMS), Amazon Simple Storage Service (S3), Amazon Virtual Private Cloud (VPC), Amazon CloudWatch Logs, and Amazon GuardDuty.
Identity and access management helps customers protect their applications and resources. In this session, learn how AWS identity services are evolving to provide you with a secure, flexible, and easy solution for managing identities and access on the AWS Cloud.
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...AWS Summits
Speaker: Alejandra Artiguez, FSI Compliance Program Manager, APAC, AWS Customer Speaker: Clara Lee Hui Theng, Head Technology & Operations, RHB Bank Berhad (Singapore)
Security and Compliance is a shared responsibility between AWS and the customer. In this session we will examine the AWS Shared responsibility model, and AWS compliance programs customers can use to gain assurance of security controls in the cloud. We will dive-deep into a number of cloud native security services that customers can use to protect their critical systems when migrating to AWS. Finally we will review a next-generation approach to audit and continuous compliance leveraging automation to identify mis-configurations and perform automatic remediatation to protect your AWS workloads.
AWS Control Tower is a new AWS service for cloud administrators to set up and govern their secure, compliant, multi-account environments on AWS.
In this session, University of York will discuss their implementation of AWS Landing Zone. We’ll also explain how AWS Control Tower automates AWS Landing Zone creation with best-practice blueprints.
AWS Security, IAM, Databases, Elasticity, Management Tools - AWSome Day Phila...Amazon Web Services
Part 3 of 3.
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking.
AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one.
Who should attend?
AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
Evolving perimeters with guardrails, not gates: Improving developer agility -...Amazon Web Services
In this session, Comcast discusses its AWS cloud governance strategy, focusing on self-service tooling and account management, and explaining how it improved the developer experience by leveraging federated identities, AWS Organizations, and AWS Identity and Access Management permissions boundaries.
The fundamentals of AWS cloud security - FND209-R - AWS re:Inforce 2019 Amazon Web Services
The services that make up AWS are many and varied, but the set of concepts you need to secure your data and infrastructure is simple and straightforward. By the end of this session, you will know the fundamental patterns that you can apply to secure any workload you run in AWS with confidence. We cover the basics of network security, the process of reading and writing access management policies, and data encryption.
About the event:
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking.
AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one.
Who should attend?
AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
AWS Summit Milano 2019 - Sicurezza in AWS automazione e best practice - Antonio Duma, Solutions Architect, AWS | Carmela Gambardella, Solutions Architect AWS
Accelerating Cloud Adoption in Federal Government and Regulated Sectors with ...Amazon Web Services
As federal agencies and regulated sectors embrace cloud and increasingly move production workloads to the cloud, governance becomes pivotal like never before. Adherence to the organization’s security and compliance posture while keeping it simple for the end-user, can be daunting. Agile Governance is the new mantra. In this session you will learn how AWS Service Catalog, now available in AWS GovCloud (US) as well, enables compliance controls and guardrails while provisioning AWS services, Marketplace software, and 3-tier applications. We will discuss ways to use AWS Service Catalog to integrate AWS with ITSM tools like ServiceNow to help customers with cloud adoption in a hybrid environment, with customer examples. You will also learn how AWS Service Catalog enhances automation of your CI/CD pipeline to enable DevSecOps while making it simple for the end-user to consume cloud services from its self-service portal.
AWS Introduction & History - AWSome Day Philadelphia 2019Amazon Web Services
Part 1 of 3.
This free, one-day training will provide a step-by-step introduction to the core AWS services for compute, storage, database, and networking.
AWS technical experts will explain key features and use cases, share best practices, walk through technical demos, and be available to answer your questions one-on-one.
Who should attend?
AWSome Day is ideal for IT managers, system engineers, system administrators, and architects who are eager to learn more about cloud computing and how to get started on the AWS Cloud.
How You Can Use AWS Identity Services to Be Successful on Your AWS Cloud JourneyAmazon Web Services
by Ron Cully, Manager, Product Management, AWS
Every journey to the AWS Cloud is unique. Some customers are migrating existing applications, while others are building new applications using cloud-native services. Along each of these journeys, identity and access management helps customers protect their applications and resources. In this session, you will learn how AWS’ Identity Services provide you a secure, flexible, and easy solution for managing identities and access on the AWS Cloud. With AWS’ Identity Services, you do not have to adapt to AWS. Instead, you have a choice of services designed to meet you anywhere along your journey to the AWS Cloud.
Scale - Best Practices for Migrating your Microsoft Workloads to AWSAmazon Web Services
In this session, learn best practices for customers migrating Microsoft workloads to AWS. Explore Active Directory, Sharepoint, and application migrations running on the windows server, in addition to the impending End of Support of 2008 r2 and how AWS can help. Discover how AWS can help reduce costs by reusing licensing, incorporating Amazon Relational Database Service (RDS), Amazon FSx, AWS License Manager, and AWS Systems Manager to help you manage those workloads.
In this webinar, you'll learn about the foundational security blocks and how to start using them effectively to create robust and secure architectures. Discover how Identity and Access management is done and how it integrates with other AWS services. In addition, learn how to improve governance by using AWS Security Hub, AWS Config and CloudTrail to gain unprecedented visibility of activity in the account. Subsequently use AWS Config rules to rectify configuration issues quickly and effectively.
Similar to AWS identity services - Enabling & securing your cloud journey - SEC202 - Santa Clara AWS Summit.pdf (20)
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.