This document provides information about AWS certifications from a presentation given by Andrew May, a Senior Solutions Architect.
The key points are:
- There are several certification levels from introductory Cloud Practitioner to professional-level certifications like Solutions Architect Professional.
- The exams cover technical topics like specific AWS services as well as architectural design questions.
- To prepare, the presenter recommends hands-on experience with AWS, reading documentation, taking online courses, practicing with sample exams, and ensuring a strong understanding of exam domains through focused study.
- Benefits of certification include credentials that can help career advancement, access to the AWS Certified store, and requirements for AWS Partner Network levels for consulting
AWS Community Day | Midwest 2018
Track 2
Elastic.co's ELK Stack - Platform Agnostic Immutable Infrastructure & Analysis through Configuration - Dan Morgan, Chicago burbs
Automated Compliance and Governance with AWS Config and AWS CloudTrail - June...Amazon Web Services
Learning Objectives:
- Reduce the complexity of governance
- Embed compliance in the development process
- Learn about AWS Management Tools
As your cloud operations evolve, complexity of governance, compliance, and risk auditing of your AWS account increases. With AWS Config and AWS CloudTrail you can automate your controls and compliance efforts so that they scale with your cloud footprint. You can discover resources that exist in your account, capture changes in configurations, and create alerts for out-of-compliance events.In this session, we will help you use AWS Config, AWS CloudTrail, and other AWS Management Tools to automate configuration governance so that compliance is embedded in the development process.
Evolution of Geospatial Workloads on AWS - AWS PS Summit Canberra Amazon Web Services
Geospatial workloads are often amongst the first to move to AWS in government. This session will cover some common topics in GIS, including optimizing for license costs, leveraging native cloud capabilities and running GIS “desktop" software on AWS cloud.
Speaker: Herman Coomans, Solutions Architect, Amazon Web Services
Level: 200
AWS Community Day | Midwest 2018
Track 2
Elastic.co's ELK Stack - Platform Agnostic Immutable Infrastructure & Analysis through Configuration - Dan Morgan, Chicago burbs
Automated Compliance and Governance with AWS Config and AWS CloudTrail - June...Amazon Web Services
Learning Objectives:
- Reduce the complexity of governance
- Embed compliance in the development process
- Learn about AWS Management Tools
As your cloud operations evolve, complexity of governance, compliance, and risk auditing of your AWS account increases. With AWS Config and AWS CloudTrail you can automate your controls and compliance efforts so that they scale with your cloud footprint. You can discover resources that exist in your account, capture changes in configurations, and create alerts for out-of-compliance events.In this session, we will help you use AWS Config, AWS CloudTrail, and other AWS Management Tools to automate configuration governance so that compliance is embedded in the development process.
Evolution of Geospatial Workloads on AWS - AWS PS Summit Canberra Amazon Web Services
Geospatial workloads are often amongst the first to move to AWS in government. This session will cover some common topics in GIS, including optimizing for license costs, leveraging native cloud capabilities and running GIS “desktop" software on AWS cloud.
Speaker: Herman Coomans, Solutions Architect, Amazon Web Services
Level: 200
Building PCI Compliance Solution on AWS - Pop-up Loft Tel AvivAmazon Web Services
PCI-DSS is one of the most popular compliance regulations facing most customers on the cloud. In this session we will take a look at reference architecture that will provide you with guidelines and strategies to design a PCI compliant environment. By Lahav Savir, Emind CEO & Architect
Batch Processing with Containers on AWS - June 2017 AWS Online Tech TalksAmazon Web Services
Learning Objectives:
- Learn about the options for running batch workloads on AWS
- Learn how to architect a containerized batch processing service on Amazon ECS
- Learn best practices for optimizing and scaling complex batch workload requirements
Batch processing is useful when you need to periodically analyze large amounts of data, but configuring and scaling a cluster of virtual machines to process complex batch jobs can be difficult. Containers provide a great solution for running batch jobs by providing easily managed, scalable, and portable code environments.
In this tech talk, we’ll show you how to use containers on AWS for batch processing jobs that can scale quickly and cost-effectively. We’ll discuss AWS Batch, our fully managed batch-processing service, and show you how to architect your own batch processing service using the Amazon EC2 Container Service. We’ll also discuss best practices for ensuring efficient and opportunistic scheduling, fine-grained monitoring, compute resource auto-scaling, and security for your batch jobs.
Integrating Infrastructure as Code into a Continuous Delivery Pipeline | AWS ...Amazon Web Services
Ansible is a simple, but powerful automation tool with an agentless footprint that allows for the definition of architecture, intent, and policy as code that can be deployed across both on-prem and cloud infrastructure. This enables customers to extend their enterprise and applications into AWS in a way that maintains a consistent, secure posture as part of a continuous delivery pipeline. Customers can then natively integrate with AWS to seamlessly configure and deploy a range of AWS services such as Amazon Aurora, Amazon Redshift, Amazon EMR, Amazon Athena, Amazon CloudFront, Amazon Route 53, and Elastic Load Balancing from within Red Hat OpenShift across a secure, consistent hybrid cloud infrastructure. In this session, we will demonstrate how infrastructure can be instantiated with code as part of a continuous delivery pipeline and describe how that integrates with an OpenShift hybrid cloud deployment. Learn More: https://aws.amazon.com/government-education/
The Wild Rydes Serverless Web Application Workshop introduces the basics of building serverless web applications using Amazon Simple Storage Service (S3), AWS Lambda, Amazon API Gateway, Amazon DynamoDB, Amazon Cognito, Amazon Simple Email Service (SES), Amazon CloudFront, and other AWS services.
Deep Dive: Amazon EC2 Elastic GPUs - May 2017 AWS Online Tech TalksAmazon Web Services
Learning Objectives:
- Get an overview of Elastic GPUs
- Dive deep on the technical capabilities of Elastic GPUs
- Learn best practices when using Elastic GPUs
Amazon EC2 Elastic GPUs allow you to easily attach low-cost graphics acceleration to current generation EC2 instances. With Elastic GPUs, you choose the GPU resources that are sized for your workload, so you can accelerate the graphics performance of your applications for a fraction of the cost of stand-alone graphics instances. In this tech talk, we will provide a deep dive on the capabilities of Elastic GPUs and its use case.
Self Service Agile Infrastructure for Product Teams - Pop-up Loft Tel AvivAmazon Web Services
Today’s modern infrastructure allows product teams to take full advantage of “infrastructure-as-code” and deliver value to their customers faster through a seamless & smart delivery pipeline.This delivery pipeline is built using AWS and 3rd party tools such as CloudFormation, Lambda, Terraform, Jenkins, Beanstalk, CodeDeploy, Ansible, and Docker. In the presentation we will walk you through the best practices of combining all the above into a “smart-delivery-pipeline” for your team. By Oron Adam, Emind CTO
NEW LAUNCH! Delivering Powerful Graphics-Intensive Applications from the AWS ...Amazon Web Services
AWS provides unprecedented computational power for graphics-intensive applications in areas such as design, engineering simulations, and 3D content rendering. Together, Amazon EC2 Elastic GPUs and Amazon AppStream provide the capabilities necessary for end users to access and run these applications. In this session, you learn more about Elastic GPUs and Amazon AppStream, and how you can run graphics-intensive applications on AWS. You also hear from ANSYS, a leader in engineering simulation software, and why they are moving the ANSYS Enterprise Cloud to Elastic GPUs and Amazon AppStream to deliver a better experience for customers.
AWS re:Invent 2016: Running Lean Architectures: How to Optimize for Cost Effi...Amazon Web Services
Whether you’re a cash-strapped startup or an enterprise optimizing spend, it pays to run cost-efficient architectures on AWS. This session reviews a wide range of cost planning, monitoring, and optimization strategies, featuring real-world experience from AWS customers. We cover how to effectively combine Amazon EC2 On-Demand, Reserved, and Spot instances to handle different use cases; leveraging Auto Scaling to match capacity to workload; choosing the optimal instance type through load testing; taking advantage of Multi-AZ support; and using Amazon CloudWatch to monitor usage and automatically shut off resources when they are not in use. We discuss taking advantage of tiered storage and caching, offloading content to Amazon CloudFront to reduce back-end load, and getting rid of your back end entirely by leveraging AWS high-level services. We also showcase simple tools to help track and manage costs, including Cost Explorer, billing alerts, and AWS Trusted Advisor. This session is your pocket guide for running cost effectively in the Amazon Cloud.
Attendees of this session receive a free 30-day trial of enterprise-level Trusted Advisor.
Pinterest is rolling out a phased platform migration from EC2-Classic to EC2-VPC. We used ClassicLink to link our EC2-Classic instances to VPCs, and we applied AWS best practices to configure VPC subnets and security groups. In this session, we share the lessons we learned along the way, and we also show you how to create a migration strategy and track migration costs.
A quick overview of AWS Kinesis: What is Kinesis, what problems does Kinesis solve, and how might you integrate Kinesis with an existing data warehouse.
AWS Greengrass Technical Deep Dive - AWS Online Tech TalksAmazon Web Services
Learn how the technology behind AWS Greengrass works and how it fits into your IoT strategy. Let us guide you through all the technical aspects and requirements for getting AWS Greengrass setup and provide details on how to incorporate other key services such as AWS IoT, AWS Lambda, and Amazon API Gateway. The tech talk will walk through our LoRa Nano Gateway demo with AWS IoT and AWS Greengrass to see these services in action.
Accenture Cloud Platform helps customers manage public and private enterprise cloud resources effectively and securely. In this session, learn how we designed and built new core platform capabilities using a serverless, microservices-based architecture that is based on AWS services such as AWS Lambda and Amazon API Gateway. During our journey, we discovered a number of key benefits, including a dramatic increase in developer velocity, a reduction (to almost zero) of reliance on other teams, reduced costs, greater resilience, and scalability. We describe the (wild) successes we’ve had and the challenges we’ve overcome to create an AWS serverless architecture at scale. Session sponsored by Accenture.
AWS Competency Partner
Building PCI Compliance Solution on AWS - Pop-up Loft Tel AvivAmazon Web Services
PCI-DSS is one of the most popular compliance regulations facing most customers on the cloud. In this session we will take a look at reference architecture that will provide you with guidelines and strategies to design a PCI compliant environment. By Lahav Savir, Emind CEO & Architect
Batch Processing with Containers on AWS - June 2017 AWS Online Tech TalksAmazon Web Services
Learning Objectives:
- Learn about the options for running batch workloads on AWS
- Learn how to architect a containerized batch processing service on Amazon ECS
- Learn best practices for optimizing and scaling complex batch workload requirements
Batch processing is useful when you need to periodically analyze large amounts of data, but configuring and scaling a cluster of virtual machines to process complex batch jobs can be difficult. Containers provide a great solution for running batch jobs by providing easily managed, scalable, and portable code environments.
In this tech talk, we’ll show you how to use containers on AWS for batch processing jobs that can scale quickly and cost-effectively. We’ll discuss AWS Batch, our fully managed batch-processing service, and show you how to architect your own batch processing service using the Amazon EC2 Container Service. We’ll also discuss best practices for ensuring efficient and opportunistic scheduling, fine-grained monitoring, compute resource auto-scaling, and security for your batch jobs.
Integrating Infrastructure as Code into a Continuous Delivery Pipeline | AWS ...Amazon Web Services
Ansible is a simple, but powerful automation tool with an agentless footprint that allows for the definition of architecture, intent, and policy as code that can be deployed across both on-prem and cloud infrastructure. This enables customers to extend their enterprise and applications into AWS in a way that maintains a consistent, secure posture as part of a continuous delivery pipeline. Customers can then natively integrate with AWS to seamlessly configure and deploy a range of AWS services such as Amazon Aurora, Amazon Redshift, Amazon EMR, Amazon Athena, Amazon CloudFront, Amazon Route 53, and Elastic Load Balancing from within Red Hat OpenShift across a secure, consistent hybrid cloud infrastructure. In this session, we will demonstrate how infrastructure can be instantiated with code as part of a continuous delivery pipeline and describe how that integrates with an OpenShift hybrid cloud deployment. Learn More: https://aws.amazon.com/government-education/
The Wild Rydes Serverless Web Application Workshop introduces the basics of building serverless web applications using Amazon Simple Storage Service (S3), AWS Lambda, Amazon API Gateway, Amazon DynamoDB, Amazon Cognito, Amazon Simple Email Service (SES), Amazon CloudFront, and other AWS services.
Deep Dive: Amazon EC2 Elastic GPUs - May 2017 AWS Online Tech TalksAmazon Web Services
Learning Objectives:
- Get an overview of Elastic GPUs
- Dive deep on the technical capabilities of Elastic GPUs
- Learn best practices when using Elastic GPUs
Amazon EC2 Elastic GPUs allow you to easily attach low-cost graphics acceleration to current generation EC2 instances. With Elastic GPUs, you choose the GPU resources that are sized for your workload, so you can accelerate the graphics performance of your applications for a fraction of the cost of stand-alone graphics instances. In this tech talk, we will provide a deep dive on the capabilities of Elastic GPUs and its use case.
Self Service Agile Infrastructure for Product Teams - Pop-up Loft Tel AvivAmazon Web Services
Today’s modern infrastructure allows product teams to take full advantage of “infrastructure-as-code” and deliver value to their customers faster through a seamless & smart delivery pipeline.This delivery pipeline is built using AWS and 3rd party tools such as CloudFormation, Lambda, Terraform, Jenkins, Beanstalk, CodeDeploy, Ansible, and Docker. In the presentation we will walk you through the best practices of combining all the above into a “smart-delivery-pipeline” for your team. By Oron Adam, Emind CTO
NEW LAUNCH! Delivering Powerful Graphics-Intensive Applications from the AWS ...Amazon Web Services
AWS provides unprecedented computational power for graphics-intensive applications in areas such as design, engineering simulations, and 3D content rendering. Together, Amazon EC2 Elastic GPUs and Amazon AppStream provide the capabilities necessary for end users to access and run these applications. In this session, you learn more about Elastic GPUs and Amazon AppStream, and how you can run graphics-intensive applications on AWS. You also hear from ANSYS, a leader in engineering simulation software, and why they are moving the ANSYS Enterprise Cloud to Elastic GPUs and Amazon AppStream to deliver a better experience for customers.
AWS re:Invent 2016: Running Lean Architectures: How to Optimize for Cost Effi...Amazon Web Services
Whether you’re a cash-strapped startup or an enterprise optimizing spend, it pays to run cost-efficient architectures on AWS. This session reviews a wide range of cost planning, monitoring, and optimization strategies, featuring real-world experience from AWS customers. We cover how to effectively combine Amazon EC2 On-Demand, Reserved, and Spot instances to handle different use cases; leveraging Auto Scaling to match capacity to workload; choosing the optimal instance type through load testing; taking advantage of Multi-AZ support; and using Amazon CloudWatch to monitor usage and automatically shut off resources when they are not in use. We discuss taking advantage of tiered storage and caching, offloading content to Amazon CloudFront to reduce back-end load, and getting rid of your back end entirely by leveraging AWS high-level services. We also showcase simple tools to help track and manage costs, including Cost Explorer, billing alerts, and AWS Trusted Advisor. This session is your pocket guide for running cost effectively in the Amazon Cloud.
Attendees of this session receive a free 30-day trial of enterprise-level Trusted Advisor.
Pinterest is rolling out a phased platform migration from EC2-Classic to EC2-VPC. We used ClassicLink to link our EC2-Classic instances to VPCs, and we applied AWS best practices to configure VPC subnets and security groups. In this session, we share the lessons we learned along the way, and we also show you how to create a migration strategy and track migration costs.
A quick overview of AWS Kinesis: What is Kinesis, what problems does Kinesis solve, and how might you integrate Kinesis with an existing data warehouse.
AWS Greengrass Technical Deep Dive - AWS Online Tech TalksAmazon Web Services
Learn how the technology behind AWS Greengrass works and how it fits into your IoT strategy. Let us guide you through all the technical aspects and requirements for getting AWS Greengrass setup and provide details on how to incorporate other key services such as AWS IoT, AWS Lambda, and Amazon API Gateway. The tech talk will walk through our LoRa Nano Gateway demo with AWS IoT and AWS Greengrass to see these services in action.
Accenture Cloud Platform helps customers manage public and private enterprise cloud resources effectively and securely. In this session, learn how we designed and built new core platform capabilities using a serverless, microservices-based architecture that is based on AWS services such as AWS Lambda and Amazon API Gateway. During our journey, we discovered a number of key benefits, including a dramatic increase in developer velocity, a reduction (to almost zero) of reliance on other teams, reduced costs, greater resilience, and scalability. We describe the (wild) successes we’ve had and the challenges we’ve overcome to create an AWS serverless architecture at scale. Session sponsored by Accenture.
AWS Competency Partner
Exploring Cloud Computing with Amazon Web Services (AWS)Kalema Edgar
In this presentation, I shared about:
1. The business value for AWS
2. How businesses can embrace cloud computing
3. What strategies can be used to migrate to the cloud
4. Technical overview of AWS services and how they can be used
AWS Certified DevOps Engineer: What it is and how to get certifiedInfosec
Watch the full webinar here: https://www.infosecinstitute.com/webinar/aws-certified-devops-engineer-what-it-is-and-how-to-get-certified/
Cloud infrastructure is the backbone of many organizations and services, and DevOps engineers are the professionals tasked with ensuring those systems are responsive, available, scalable and secure. The AWS Certified DevOps Engineer – Professional certification validates your skills in provisioning, operating and managing distributed AWS cloud systems.
Join us on March 27 at 11 a.m. Central to learn how this AWS certification can benefit your career — and what to expect in the first-ever live AWS boot camps from Infosec. In less than 30 minutes, you’ll learn:
- What’s on the AWS Certified DevOps Engineer exam (DOP-C02)
- Career paths AWS certification holders
- Ways you can train and get certified
- Plus Q&A from live attendees
Nesta semana ocorreu o Primeiro Treinamento de AWS da Site Blindado Labs, ministrado pelo Heitor Vital (CTO Site Blindado).
Vídeo do treinamento: https://www.youtube.com/watch?v=2C0JlawhSwY
Mais info: http://labs.siteblindado.com/2014/09/primeito-treinamento-de-aws-amazon-web.html
Lessons from Building Large-Scale, Multi-Cloud, SaaS Software at DatabricksDatabricks
The cloud has become one of the most attractive ways for enterprises to purchase software, but it requires building products in a very different way from traditional software
Want to learn more about Amazon Web Services (AWS) & how to leverage them using the OS platform? Find out from a team of experts & MVPs (certified in both OS + AWS) how to integrate these 2 technologies and build high-tech applications faster. Watch the event: https://usergroups.outsystems.com/events/details/outsystems-inc-australia-east-coast-presents-aws-dev-tips-learn-from-the-experts/
Keeping up a Competitive Ceph/RadosGW S3 API (Cephalocon Barcelona 2019)Igalia
By Javier Muñoz.
RadosGW S3 is the service layer compatible with the Amazon Simple Storage Service API (Amazon S3) in Ceph. Some users and companies adopt Ceph and use this service layer to build digital products/services that compete with other services, APIs and technologies in the object storage market.
This talk shares the experience of contributing new features and bugfixes upstream in RadosGW that were developed through open projects in the community.
The talk reviews some of the contributions made by the author from Jewel to Nautilus and its impact from a product/service point of view for the different parties.
(c) Cephalocon Barcelona 2019
19 - 20 May 2019
Barcelona (Spain)
https://ceph.com/cephalocon/barcelona-2019/
Snowflake is a cloud-native data warehouse solution that uniquely allows you to scale storage and compute independently. Applying both Snowflake and AWS best practices enable customer enjoyment of the platforms.
Migrating a multi tenant app to Azure (war biopic)★ Akshay Surve
P.S: This was presented at the Software Architect's Bangalore meetup. So, this is not completely consumable on it's own.
A war biopic on Migrating a multi-tenant app to Azure. This presentation is a combination of Learnings and Lessons in planning and executing migration of multi-tenant app to Azure (or in general to cloud).Talks about the original on-premise architecture, challenges faced in migration and the architecture after migrating to azure.
https://www.meetup.com/SoftwareArchitectsBangalore/events/237117024/
Migrating Enterprise Applications to AWS: Best Practices & Techniques (ENT303...Amazon Web Services
This session discusses strategies, tools, and techniques for migrating enterprise software systems to AWS. We consider applications like Oracle eBusiness Suite, SAP, PeopleSoft, JD Edwards, and Siebel. These applications are complex by themselves; they are frequently customized; they have many touch points on other systems in the enterprise; and they often have large associated databases. Nevertheless, running enterprise applications in the cloud affords powerful benefits. We identify success factors and best practices.
Similar to Learn about AWS Certifications - Andrew May, Columbus (20)
AWS reInvent 2023 recaps from Chicago AWS user groupAWS Chicago
Chicago AWS Solutions Architect Scott Hewitt recaps the non-GenAI updates from AWS re:Invent 2023. Updates range from storage, networking, compute and developer tools.
MARK GAMBLE_ASC For Really Remote Edge Computing - AWS Community Day Chicago ...AWS Chicago
Mark Gamble
AWS Communtity Day Midwest 2023
ASC For Really Remote Edge Computing: How AWS Snowball + SpaceX Starlink + Couchbase Capella = more uptime, lower latency and better bandwidth usage for apps at the edge
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
Climate Impact of Software Testing at Nordic Testing DaysKari Kakkonen
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...SOFTTECHHUB
The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing.
One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionAggregage
Join Maher Hanafi, VP of Engineering at Betterworks, in this new session where he'll share a practical framework to transform Gen AI prototypes into impactful products! He'll delve into the complexities of data collection and management, model selection and optimization, and ensuring security, scalability, and responsible use.
Communications Mining Series - Zero to Hero - Session 1DianaGray10
This session provides introduction to UiPath Communication Mining, importance and platform overview. You will acquire a good understand of the phases in Communication Mining as we go over the platform with you. Topics covered:
• Communication Mining Overview
• Why is it important?
• How can it help today’s business and the benefits
• Phases in Communication Mining
• Demo on Platform overview
• Q/A
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
8. Roadmap
● Certifications expire after 2 years
○ Recertification exams are cheaper
● You may choose to take Professional Certification instead of renewing
Associate Certification
○ This mostly applies for Solutions Architect
10. Cloud Practitioner
● Launched at re:Invent 2017
● Introductory Certification
● Recommended for anyone including technical, managerial, and sales
● Covers general cloud principals, an overview of a range of AWS
services, security, architecture, pricing and support
● Free online training at http://aws.training (~7 hours of videos)
12. Sample Question (1) - Technology
Which service can identify the user that made the API call when an Amazon Elastic Compute
Cloud (Amazon EC2) instance is terminated?
A) Amazon CloudWatch
B) AWS CloudTrail
C) AWS X-Ray
D) AWS Identity and Access Management (AWS IAM)
13. Sample Question (2) - Security
Which of the following is AWS's responsibility under the AWS shared responsibility model?
A) Configuring third-party applications
B) Maintaining physical hardware
C) Securing application access and data
D) Managing custom Amazon Machine Images (AMIs)
14. My impressions:
● Most questions were “guess the service”
● Skip if you are planning to take one of the associate certifications
● Too much technical detail for most non-technical roles
● Useful for those working alongside technical staff (e.g. project
managers)
● Free training is a mixed bag, but Bonus Materials has some great videos
on VPC design
16. Developer (Associate) - Current version
● Recommended to have 1+ years of AWS experience
● Focus on certain core AWS services:
EC2, DynamoDB, S3, SQS, SNS, Route 53, ElasticBeanstalk, IAM,
Simple Workflow, CloudFormation, ElastiCache
● Very little Lambda
● Knowledge of SDKs and APIs
17. Developer (Associate) - New version
● Coming Soon? Beta finished in March
● Focus on Serverless
○ Lambda, DynamoDB, S3, API Gateway
● Tools
○ X-Ray, CI/CD (CodeBuild/CodePipeline), ElasticBeanstalk
● Security
19. Sample Question (1) - Designing & Developing
Your web application reads an item from your DynamoDB table, changes an attribute, and then writes the
item back to the table. You need to ensure that one process doesn't overwrite a simultaneous change from
another process.
How can you ensure concurrency?
A) Implement optimistic concurrency by using a conditional write
B) Implement pessimistic concurrency by using a conditional write
C) Implement optimistic concurrency by locking the item upon read
D) Implement pessimistic concurrency by locking the item upon read
20. Sample Question (2) - Debugging
Your CloudFormation template launches a two-tier web application in us-east-1. When you attempt to
create a development stack in us-west-1, the process fails.
What could be the problem?
A) The AMIs referenced in the template are not available in us-west-1
B) The IAM roles referenced in the template are not valid in us-west-1
C) Two ELB Classic Load Balancers cannot have the same Name tag
D) CloudFormation templates can be launched only in a single region
21. My impressions:
● Most questions are about the details of a specific service
● Know how to calculate DynamoDB read/write capacity units usage
● Know how to optimize S3 keys for performance
● Know which languages have an SDK
● You’ll get a few questions about
SWF/ElastiCache/CloudFormation/Route 53
22. Solutions Architect (Associate)
● Recommended to have 1+ years of AWS experience
● New version of Exam released earlier this year
○ You can choose which you take until August 12th 2018
● Covers wider range of services
● More focus on combining services, architectural issues (e.g. VPC
design), security and migration
24. Sample Question (1) - Data Security
You are building a system to distribute confidential training videos to employees. Using CloudFront, what
method could be used to serve content that is stored in S3, but not publicly accessible from S3 directly?
A) Create an Origin Access Identity (OAI) for CloudFront and grant access to the objects in your S3
bucket to that OAI
B) Add the CloudFront account security group “amazon-cf/amazon-cf-sg” to the appropriate S3 bucket
policy
C) Create an Identity and Access Management (IAM) User for CloudFront and grant access to the
objects in your S3 bucket to that IAM User
D) Create a S3 bucket policy that lists the CloudFront distribution ID as the Principal and the target bucket
as the Amazon Resource Name (ARN)
25. Sample Question (2) - Designing
Which of the following will occur when an EC2 instance in a VPC (Virtual Private Cloud) with an associated
Elastic IP is stopped and started? (Choose 2 answers)
A) The Elastic IP will be dissociated from the instance
B) All data on instance-store devices will be lost
C) All data on EBS (Elastic Block Store) devices will be lost
D) The ENI (Elastic Network Interface) is detached
E) The underlying host for the instance is changed
26. My impressions:
● Expects a deeper level of understanding about how AWS services work
● Know how to design a VPC
● Wrong answers in questions are harder to spot (especially when you
have to pick multiple)
● I got a lot of questions about EBS, someone else got a lot of S3
questions
27. New Exam:
● More questions (55->65), longer (80 min -> 130 min)
● Different distribution of content
● More up to date services (Lambda, ALB, DynamoDB DAX, SQS FIFO,
EFS)
● Recommended if you haven’t already been studying for the old exam
28. SysOps Administrator
● Recommended to have 1+ years of AWS experience
● Operational focus:
○ Deployment, configuration, monitoring and security
● Choose between different options for price/performance
○ Understand different EC2 instance types
○ IOPS limits and calculations
30. Example Question (1) - Provisioning
You have been tasked with identifying an appropriate storage solution for a NoSQL database that requires
random I/O reads of greater than 100,000 4kB IOPS.
Which EC2 option will meet this requirement?
A) EBS provisioned IOPS
B) SSD instance store
C) EBS optimized instances
D) High Storage instance configured in RAID 10
31. Example Question (2) - Networking
Instance A and instance B are running in two different subnets A and B of a VPC. Instance A is not able to
ping instance B.
What are two possible reasons for this? (Pick 2 correct answers)
A) The routing table of subnet A has no target route to subnet B
B) The security group attached to instance B does not allow inbound ICMP traffic
C) The policy linked to the IAM role on instance A is not configured correctly
D) The NACL on subnet B does not allow outbound ICMP traffic
32. My impressions:
● Most difficult of the Associate Certifications
● Need to understand EBS (IOPS, Snapshots)
● Surprising number of questions about Billing
● Some obscure questions that weren’t covered in the training I took
○ E.g. restricting access from a VPC to a single bucket using
S3 VPC Endpoint, Bucket Policy and VPC Endpoint policy
34. Solutions Architect (Professional)
● 2+ years experience & Solutions Architect (Associate)
● Requires deeper understanding of AWS services and architecture
● Questions and answers are more complex
● Probably the most difficult Certification to obtain
37. DevOps Engineer (Professional)
● 2+ years of experience & either Developer (Associate) or SysOps
Engineer (Associate) certifications
● Focus on Automation and Continuous Delivery using AWS tools:
○ CloudFormation, ElasticBeanstalk, OpsWorks, CodeDeploy, Data
Pipeline
● Not yet updated to cover Lambda/ECS/CodePipeline/CodeBuild
41. Advanced Networking Specialty
● Recommended to have 5 years of Networking experience
● Focus on Hybrid Networks for Enterprises
● Design Networks to support required performance and security
○ E.g. how many Direct Connect links do you need?
42. Big Data Specialty
● Recommended to have 5 years of Data Analytics experience
● Domains:
○ Collection, Storage, Processing, Analysis, Visualization, Security
● Services:
○ S3, Redshift, Kinesis, Data Pipeline, EMR, QuickSight
43. Security Specialty
● Released April 2018
● Key Areas:
○ Networking (Security Groups/NACLs)
○ Encryption (KMS, CloudHSM)
○ Audit (CloudTrail)
○ Denial of Service, Intrusion Detection
45. Explore AWS
● Pick a service in the AWS Console you’ve never used and try it out
● Check pricing page - there may be a free tier
○ Some services have temporary free tiers, some are permanent
● Remember to shutdown/delete everything when you’re done
● Monitor your costs before you get a bill
46. Read Documentation
● AWS Developer Documentation
○ Often contains Tutorials that you can try out
● FAQs for individual services
● AWS Whitepapers cover a lot of different use cases
○ Architecting for the Cloud: AWS Best Practices
● AWS Blogs and Release Notes email cover new services and changes to
existing service
48. Training
● Classroom (in-person or virtual) training course available ($$$)
○ Content determined by AWS, provided by partners
○ Hands on Labs
● Free AWS Courses on edX
● Online Courses (e.g. A Cloud Guru) ($)
○ Certification specific and more general technology courses
○ Exercises (using your own AWS Account)
● Quiklabs - hands on training using provided AWS account ($$)
49. Practice Exams
● Register the same was as for Certification
Exams
● 20 questions for $20
● Same format and software as real exams
● Possibly some of the same questions you
will get
● Instant pass/fail result, email with % for
different domains
Practice Test results:
Overall Score: 80%
Topic Level Scoring:
1.0 Monitoring and Metrics: 66%
2.0 High Availability: 66%
3.0 Analysis: 100%
4.0 Deployment and Provisioning: 100%
5.0 Data Management: 100%
6.0 Security: 100%
7.0 Networking: 33%
51. Registering
● Create AWS Training account and from there select “Certifications”
○ This will create a linked certification account
○ APN members should create training account via APN portal
○ Can use existing Amazon account
● Select Certification, Language, Location and Month and schedule exam
● Multiple locations in larger cities
● Practitioner: $100, Associate: $150, Professional: $300
52. Test Centers
● Run by PSI
● Lots of different tests being taken in same facility
○ You will probably be the only person taking an AWS certification
● Empty everything from your pockets
○ Limited storage for valuables
53. The Test
● Make sure you’re taking the right test
● Accept NDA!
● Read questions carefully, you have plenty of time
○ Questions can be marked for later and gone back to
○ Timer in top right
● Questionnaire at end
● Pass/fail result immediately, email soon after
55. From Certification Portal
● These take a few days to become available
● Certification Certificate
● Digital Badge
● Generate a public Transcript to share your Certification(s)
● Practice Exam Credit (not Practitioner)
● Access to AWS Certified Store
56. For AWS Partner Network members
● If Training account created via APN and with same email, new
certifications should automatically update APN account
● Consulting Partner levels:
○ Standard: 2 Associate Certifications
○ Advanced: 2 Professional, 4 Associate
○ Premier: 8 Professional, 20 Associate
(but certifications are the easy part of the higher levels)