In this session, learn how AWS helps customers effectively manage and govern their infrastructure and resources, simplifying compliance and improving efficiency when completing operational tasks. Come hear Anik Mazumder, principal infrastructure architect at Intuit, speak about his company’s experience. We also share some of the latest innovation from AWS Config in this space, and we cover recent releases in AWS management and governance services.
AWS identity services - Enabling & securing your cloud journey - SEC202 - San...Amazon Web Services
Throughout your journey to the AWS Cloud, you will encounter and rely on a number of AWS identity services. In this session, we provide an overview of AWS identity services within the context of a typical cloud journey. Learn about each service, the capabilities it provides, and how the services fit and work together to provide you with a robust foundation and enable you to advance your journey with confidence and speed. Finally, we take a deeper look at a number of identity-based use cases, where the power and programmability of the cloud is radically simplifying implementation and strengthening security.
Database Freedom is an AWS initiative that accelerates enterprise migrations from commercial database engines to AWS native database services or managed open-source systems. We review the basics of the Amazon purpose-built database strategy and cover our Workload Qualification Framework, which helps you determine a good database migration candidate and predict the level of effort. In the hands-on lab, you use AWS Schema Conversion Tool and AWS Database Migration Service to migrate your databases to Amazon Aurora PostgreSQL. Bring a laptop with Firefox or Chrome and a working AWS account. We provide an AWS CloudFormation template to configure the lab environment.
Giving credit where credit’s due - myFICO’s cloud transformation - SVC204 - S...Amazon Web Services
FICO, a leading predictive analytics software company, has migrated many mission-critical applications to AWS, including myFICO, a consumer credit-reporting and monitoring application. Moving myFICO was challenging, given its low-latency requirements, massive volumes of sensitive data, and spikey traffic bursts, but it yielded many benefits, including greatly improving data processing, 99.99% availability, and an exemplary compliance and security posture. In this session, learn which migration techniques worked best, the techniques and tools to achieve security on AWS, and how the application evolved, using services like AWS Lambda, Amazon ElastiCache, Amazon Pinpoint, Network Load Balancer, Amazon Kinesis, Amazon Redshift and AWS KMS.
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitAmazon Web Services
The Twelve-Factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the Twelve-Factor model prescribes practices that apply to everything from web applications to APIs to data-processing applications. Although serverless computing and AWS Lambda have changed application development, the Twelve-Factor methodology remains relevant and applicable in a serverless world. In this talk, we apply the Twelve-Factor model to serverless application development with Lambda and Amazon API Gateway, and we demonstrate how these services enable you to build scalable, well-built, low-administration applications.
Carry security with you to the cloud - DEM14-SR - New York AWS SummitAmazon Web Services
The cloud is here, and AWS is leading the charge in enabling customers to migrate their data centers and data to the cloud. With these changing needs, enterprises need a proactive, automated approach to monitoring and securing cloud infrastructure. With this shift, there is a natural tension between decentralized, distributed DevOps and the traditional command-and-control approach of classic security management. In this session, you learn common security best practices when migrating to the cloud, how DevOps and InfoSec teams can align to the new DevSecOps paradigm, and why continuous compliance management is a new business imperative. This presentation is brought to you by AWS partner, Symantec.
Well-architected Amazon WorkSpaces: Enterprise deployment at scale - SVC304 -...Amazon Web Services
Join this session to learn best practices for successfully implementing and managing your Amazon WorkSpaces deployment at scale. Hear AWS customer success managers and solutions architects cover key topics you need to know as you deploy and scale Amazon WorkSpaces, including account structure and governance, VPC design and setup, directory services configuration, deployment and operations of Amazon WorkSpaces, image and patch management, and application deployment. We cover best practices for automating the process of migrating large numbers of licenses, how to create custom images, and ways to manage license compliance.
Journey into the Cloud with VMware Cloud on AWS: Deep Dive - CMP303 - Anaheim...Amazon Web Services
Customers use VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their DR environments. VMware Cloud on AWS offers the opportunity to augment and evolve existing and legacy applications. Learn how VMware Cloud on AWS can help build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices for protecting and scaling your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing. Learn how to bring your entire IT landscape closer to your digital innovation goals.
AWS identity services - Enabling & securing your cloud journey - SEC202 - San...Amazon Web Services
Throughout your journey to the AWS Cloud, you will encounter and rely on a number of AWS identity services. In this session, we provide an overview of AWS identity services within the context of a typical cloud journey. Learn about each service, the capabilities it provides, and how the services fit and work together to provide you with a robust foundation and enable you to advance your journey with confidence and speed. Finally, we take a deeper look at a number of identity-based use cases, where the power and programmability of the cloud is radically simplifying implementation and strengthening security.
Database Freedom is an AWS initiative that accelerates enterprise migrations from commercial database engines to AWS native database services or managed open-source systems. We review the basics of the Amazon purpose-built database strategy and cover our Workload Qualification Framework, which helps you determine a good database migration candidate and predict the level of effort. In the hands-on lab, you use AWS Schema Conversion Tool and AWS Database Migration Service to migrate your databases to Amazon Aurora PostgreSQL. Bring a laptop with Firefox or Chrome and a working AWS account. We provide an AWS CloudFormation template to configure the lab environment.
Giving credit where credit’s due - myFICO’s cloud transformation - SVC204 - S...Amazon Web Services
FICO, a leading predictive analytics software company, has migrated many mission-critical applications to AWS, including myFICO, a consumer credit-reporting and monitoring application. Moving myFICO was challenging, given its low-latency requirements, massive volumes of sensitive data, and spikey traffic bursts, but it yielded many benefits, including greatly improving data processing, 99.99% availability, and an exemplary compliance and security posture. In this session, learn which migration techniques worked best, the techniques and tools to achieve security on AWS, and how the application evolved, using services like AWS Lambda, Amazon ElastiCache, Amazon Pinpoint, Network Load Balancer, Amazon Kinesis, Amazon Redshift and AWS KMS.
Twelve-Factor serverless applications - MAD311 - Chicago AWS SummitAmazon Web Services
The Twelve-Factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the Twelve-Factor model prescribes practices that apply to everything from web applications to APIs to data-processing applications. Although serverless computing and AWS Lambda have changed application development, the Twelve-Factor methodology remains relevant and applicable in a serverless world. In this talk, we apply the Twelve-Factor model to serverless application development with Lambda and Amazon API Gateway, and we demonstrate how these services enable you to build scalable, well-built, low-administration applications.
Carry security with you to the cloud - DEM14-SR - New York AWS SummitAmazon Web Services
The cloud is here, and AWS is leading the charge in enabling customers to migrate their data centers and data to the cloud. With these changing needs, enterprises need a proactive, automated approach to monitoring and securing cloud infrastructure. With this shift, there is a natural tension between decentralized, distributed DevOps and the traditional command-and-control approach of classic security management. In this session, you learn common security best practices when migrating to the cloud, how DevOps and InfoSec teams can align to the new DevSecOps paradigm, and why continuous compliance management is a new business imperative. This presentation is brought to you by AWS partner, Symantec.
Well-architected Amazon WorkSpaces: Enterprise deployment at scale - SVC304 -...Amazon Web Services
Join this session to learn best practices for successfully implementing and managing your Amazon WorkSpaces deployment at scale. Hear AWS customer success managers and solutions architects cover key topics you need to know as you deploy and scale Amazon WorkSpaces, including account structure and governance, VPC design and setup, directory services configuration, deployment and operations of Amazon WorkSpaces, image and patch management, and application deployment. We cover best practices for automating the process of migrating large numbers of licenses, how to create custom images, and ways to manage license compliance.
Journey into the Cloud with VMware Cloud on AWS: Deep Dive - CMP303 - Anaheim...Amazon Web Services
Customers use VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their DR environments. VMware Cloud on AWS offers the opportunity to augment and evolve existing and legacy applications. Learn how VMware Cloud on AWS can help build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices for protecting and scaling your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing. Learn how to bring your entire IT landscape closer to your digital innovation goals.
How Millennium Management achieves provable security with AWS Zelkova - FSV30...Amazon Web Services
Data exfiltration is a key concern for financial institutions, which often store personally identifiable information, payment card information, and proprietary methods or algorithms. Balancing security and agility in identity and access management (IAM) policies is critical. To achieve this balance, Millennium Management developed a security framework that integrates into CI/CD pipelines. This framework utilizes semantic reasoning, proprietary security evaluations, and AWS Zelkova to achieve provably secure IAM policies pre-deployment in a distributed, multi-account environment. Learn how Millennium combined Zelkova with services such as AWS Step Functions, AWS Lambda, and AWS CodePipeline—for rapid development while mitigating data exfiltration risk.
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
Customers are using VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their disaster recovery environments. VMware Cloud on AWS brings a new dimension of hybrid cloud and mixed architecture to many customers, offering the opportunity for augmenting and evolving existing and legacy applications. Learn how VMware Cloud on AWS helps build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices to protect and scale your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing.
The twelve-factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the twelve-factor model prescribes best practices that apply to everything from web applications to APIs to data processing applications. Although serverless computing and AWS Lambda have changed application development, the twelve-factor best practices remain relevant and applicable in a serverless world. In this talk, we apply the twelve-factor model to serverless application development with AWS Lambda and Amazon API Gateway, and we show you how these services enable you to build scalable, well-built, low-administration applications.
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
In this session, we first cover build-out and design fundamentals for VPCs, including selecting your IP space, subnetting, routing, security, and more. We then discuss different approaches and scenarios for connecting your VPC to your data center with AWS VPN or AWS Direct Connect. Throughout this presentation, we discuss our latest networking services and updates, including AWS Transit Gateway and AWS PrivateLink. This mid-level architecture discussion is for architects, network administrators, and technology decision makers interested in understanding the building blocks that AWS makes available with Amazon VPC. Learn how to connect VPCs with your offices and data center footprint.
The evolution of continuous cloud security and compliance - DEM05-S - New Yor...Amazon Web Services
With the ongoing expansion of cloud transformation, the different stages of cloud adoption become instrumental in achieving successful adoption of cloud infrastructure and services. When considering each stage, it’s important to overlay the proper security framework alongside continuous monitoring to provide the necessary security outcomes for an optimal security posture. In this session, we describe how to deliver outcomes of continuous security and compliance through a security wrapper delivered through infrastructure as code. This presentation is brought to you by AWS partner, Armor Cloud Security.
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Amazon Web Services
Northwestern Mutual’s technology teams maintain a complex compliance environment for a diverse set of developers working within more than 100 AWS accounts. To drive best practices and ensure continuous compliance, they designed an AWS-based architecture using services such as AWS Lambda, Amazon DynamoDB, Amazon Simple Queue Service (Amazon SQS), and Amazon CloudWatch to auto-remediate misconfigurations. In this session, we discuss how these services help Northwestern Mutual swiftly correct configurations and integrate with tools like Slack and Pagerduty to create logs, notify developers and account owners of changes, and track trends in remediation.
Data protection using encryption in AWS - SEC201 - Santa Clara AWS SummitAmazon Web Services
Encryption is an essential tool for protecting data, and your key management practices provide the means to control access to sensitive and regulated information. In this session, we provide an overview of AWS Key Management Service (AWS KMS) and show you how it integrates with encryption capabilities across AWS. We describe how customers can use AWS KMS features to gain additional control over their keys and satisfy compliance requirements. Representatives from Slack join us to describe how the company used AWS KMS to give its customers increased control and visibility over the data that Slack protects on their behalf.
Overcoming tomorrow's operational challenges with AIOps - DEM05-R1 - Santa Cl...Amazon Web Services
Digital transformation, which requires an unprecedented scale and complex infrastructure, has sparked an IT service availability crisis in the enterprise. Traditional bottom-up, rules-driven approaches to incident management have outlived their usefulness. Artificial intelligence for IT operations, or AIOps, provides a new direction by using operational data to drive a top-down approach to service availability. This enables greater business agility while improving customer service, lowering operation costs, and boosting the productivity of IT operations teams. In this talk, Moogsoft CEO, Phil Tee, describes how AIOps provides enterprises with a critical advantage and paves the way for the future of service assurance.
Compliance automation: Set it up fast, then code it your way - GRC330-R - AWS...Amazon Web Services
In this workshop, learn how to detect common resource misconfigurations using AWS Security Hub; how to extend coverage by deploying additional sets of existing rules or your own custom AWS Config rules using our Rule Development Kit (written in Python); and how to automatically remediate compliance violations when they are detected. Python basic skills and a basic understanding of boto3 are required for the coding portion of this workshop.
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Amazon Web Services
Serverless architectures free customers to focus on solving business problems without the burden of managing infrastructure on AWS. However, building serverless applications requires a change in architectural thinking. In this talk, learn how to use powerful event-driven design patterns to architect highly scalable solutions that are enterprise-grade, robust, and cost effective. We showcase how to use AWS Lambda combined with messaging services, such as Amazon SQS and Amazon SNS, to improve time to market while delivering great quality service.
Gain visibility & real-time actionable security alerts with VPC Flow Logs & A...Amazon Web Services
The rapid adoption of cloud services and application migration has brought several challenges to network admins and security professionals, and it has made real-time visibility of the network an even more crucial priority. In this session, learn how Cisco Stealthwatch Cloud helps you leverage data you inherently create with AWS and within your network to prevent compute theft and orphaned compute, secure weak or incomplete access control lists (ACL), and enforce security policies beyond the traditional firewall while maintaining regulatory compliance by extending visibility across your entire network. This presentation is brought to you by AWS partner, Cisco Systems, Inc.
Technical deep dive: Cloud data management with Veeam and AWS - SVC202-S - Ch...Amazon Web Services
There are many things to consider when you move backups to AWS and manage data protection across on-premises and cloud environments. Veeam and N2WS (a Veeam company) enable data protection and portability to the AWS Cloud with enterprise-class backup and disaster recovery for Amazon EC2, Amazon RDS, Amazon DynamoDB, and Amazon EBS. In this technical session, learn how to scale for growth on the AWS Cloud and manage data protection for thousands of Amazon EC2 instances. We cover how to back up, restore, and protect databases and workloads with N2WS Backup & Recovery and the new Veeam Backup & Replication for AWS. This session is brought to you by AWS partner, Veeam.
Migrating monolithic applications with the strangler pattern - FSV303 - New Y...Amazon Web Services
“Lifting and shifting” an enterprise-scale application will yield some of the benefits of the cloud, but elasticity and agility may still be limited. Conversely, rewriting that application to be cloud-native can be costly in terms of both time and money and could cause you to miss market opportunities. This session explores the challenges financial institutions face when migrating their existing portfolio of applications to the cloud. Then, we share practical tips to migrate applications to realize cloud-native architectural benefits incrementally using the strangler pattern.
Enable Agile Development with Amazon Linux WorkSpaces and WorkLink - SVC203 -...Amazon Web Services
Developers today still spend too much time provisioning the resources they need to write code. Additionally, developing mobile and desktop applications for multiple OS and browser platforms slows down application delivery. In this session, we discuss how developers can use AWS end user computing services to save money on developer desktops and simplify application delivery for mobile and desktop applications. We go through best practices for deploying Amazon Linux WorkSpaces for your development teams. We also provide an in-depth discussion on our newest service, Amazon WorkLink, which provides secure access to company websites and web applications.
Designing security & governance via AWS Control Tower & Organizations - SEC30...Amazon Web Services
Whether it is per business unit or per application, many AWS customers use multiple accounts to meet their infrastructure isolation, separation of duties, and billing requirements. In this session, we cover considerations, limitations, and security patterns when building a multi-account strategy. We explore topics such as thought pattern, identity federation, cross-account roles, consolidated logging, and account governance. We conclude by presenting an enterprise-ready landing-zone framework and providing the background needed to implement an AWS Landing Zone using AWS Control Tower and AWS Organizations.
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...Amazon Web Services
Building a CI/CD pipeline to automatically deliver your application into production provides great agility for a development team. However, to ensure safe deployments for your business and users, it’s important to use metrics and monitoring to automatically roll back when things go wrong. In this session, learn how to build a CI/CD pipeline that incorporates monitoring for automated rollback actions, and application tracing to help quickly determine what went wrong.
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...Amazon Web Services
IT organizations today need to support a mobile, flexible, global workforce and ensure that their users can be productive anywhere. Moving desktops and applications to AWS offers improved security, scale, and performance with cloud economics. In this session, we provide an overview of Amazon WorkSpaces and Amazon AppStream 2.0, and we discuss the use cases for each. Then, we dive deep into best practices for implementing Amazon WorkSpaces and AppStream 2.0, including how to integrate with your existing identity, security, networking, and storage solutions.
Using automation to drive continuous-compliance best practices - SEC208 - New...Amazon Web Services
Northwestern Mutual’s technology teams maintain a complex compliance environment for a diverse set of developers working within more than 100 AWS accounts. To drive best practices and ensure continuous compliance, the teams designed an AWS-based architecture using services such as AWS Lambda, Amazon DynamoDB, Amazon Simple Queue Service (Amazon SQS), and Amazon CloudWatch to auto-remediate misconfigurations. In this session, learn how these services help Northwestern Mutual swiftly correct configurations and integrate with tools like Slack and PagerDuty to create logs, notify developers and account owners of changes, and track trends in remediation.
How Millennium Management achieves provable security with AWS Zelkova - FSV30...Amazon Web Services
Data exfiltration is a key concern for financial institutions, which often store personally identifiable information, payment card information, and proprietary methods or algorithms. Balancing security and agility in identity and access management (IAM) policies is critical. To achieve this balance, Millennium Management developed a security framework that integrates into CI/CD pipelines. This framework utilizes semantic reasoning, proprietary security evaluations, and AWS Zelkova to achieve provably secure IAM policies pre-deployment in a distributed, multi-account environment. Learn how Millennium combined Zelkova with services such as AWS Step Functions, AWS Lambda, and AWS CodePipeline—for rapid development while mitigating data exfiltration risk.
Accelerating your Cloud Migration with VMware Cloud on AWS - SVC210 - Atlanta...Amazon Web Services
Customers are using VMware Cloud on AWS to accelerate cloud migrations, deploy hybrid architectures, and replace their disaster recovery environments. VMware Cloud on AWS brings a new dimension of hybrid cloud and mixed architecture to many customers, offering the opportunity for augmenting and evolving existing and legacy applications. Learn how VMware Cloud on AWS helps build a lower-risk and iterative transformation approach to your traditional applications and data in a hybrid environment. Also learn best practices to protect and scale your workload by natively integrating AWS services, such as AWS Direct Connect, Amazon S3, Amazon RDS, and Elastic Load Balancing.
The twelve-factor application model represents 12 best practices for building modern, cloud-native applications. With guidance on factors like configuration, deployment, runtime, and multiple-service communication, the twelve-factor model prescribes best practices that apply to everything from web applications to APIs to data processing applications. Although serverless computing and AWS Lambda have changed application development, the twelve-factor best practices remain relevant and applicable in a serverless world. In this talk, we apply the twelve-factor model to serverless application development with AWS Lambda and Amazon API Gateway, and we show you how these services enable you to build scalable, well-built, low-administration applications.
AWS networking fundamentals - SVC303 - Santa Clara AWS SummitAmazon Web Services
In this session, we first cover build-out and design fundamentals for VPCs, including selecting your IP space, subnetting, routing, security, and more. We then discuss different approaches and scenarios for connecting your VPC to your data center with AWS VPN or AWS Direct Connect. Throughout this presentation, we discuss our latest networking services and updates, including AWS Transit Gateway and AWS PrivateLink. This mid-level architecture discussion is for architects, network administrators, and technology decision makers interested in understanding the building blocks that AWS makes available with Amazon VPC. Learn how to connect VPCs with your offices and data center footprint.
The evolution of continuous cloud security and compliance - DEM05-S - New Yor...Amazon Web Services
With the ongoing expansion of cloud transformation, the different stages of cloud adoption become instrumental in achieving successful adoption of cloud infrastructure and services. When considering each stage, it’s important to overlay the proper security framework alongside continuous monitoring to provide the necessary security outcomes for an optimal security posture. In this session, we describe how to deliver outcomes of continuous security and compliance through a security wrapper delivered through infrastructure as code. This presentation is brought to you by AWS partner, Armor Cloud Security.
Using automation to drive continuous-compliance best practices - SVC309 - Chi...Amazon Web Services
Northwestern Mutual’s technology teams maintain a complex compliance environment for a diverse set of developers working within more than 100 AWS accounts. To drive best practices and ensure continuous compliance, they designed an AWS-based architecture using services such as AWS Lambda, Amazon DynamoDB, Amazon Simple Queue Service (Amazon SQS), and Amazon CloudWatch to auto-remediate misconfigurations. In this session, we discuss how these services help Northwestern Mutual swiftly correct configurations and integrate with tools like Slack and Pagerduty to create logs, notify developers and account owners of changes, and track trends in remediation.
Data protection using encryption in AWS - SEC201 - Santa Clara AWS SummitAmazon Web Services
Encryption is an essential tool for protecting data, and your key management practices provide the means to control access to sensitive and regulated information. In this session, we provide an overview of AWS Key Management Service (AWS KMS) and show you how it integrates with encryption capabilities across AWS. We describe how customers can use AWS KMS features to gain additional control over their keys and satisfy compliance requirements. Representatives from Slack join us to describe how the company used AWS KMS to give its customers increased control and visibility over the data that Slack protects on their behalf.
Overcoming tomorrow's operational challenges with AIOps - DEM05-R1 - Santa Cl...Amazon Web Services
Digital transformation, which requires an unprecedented scale and complex infrastructure, has sparked an IT service availability crisis in the enterprise. Traditional bottom-up, rules-driven approaches to incident management have outlived their usefulness. Artificial intelligence for IT operations, or AIOps, provides a new direction by using operational data to drive a top-down approach to service availability. This enables greater business agility while improving customer service, lowering operation costs, and boosting the productivity of IT operations teams. In this talk, Moogsoft CEO, Phil Tee, describes how AIOps provides enterprises with a critical advantage and paves the way for the future of service assurance.
Compliance automation: Set it up fast, then code it your way - GRC330-R - AWS...Amazon Web Services
In this workshop, learn how to detect common resource misconfigurations using AWS Security Hub; how to extend coverage by deploying additional sets of existing rules or your own custom AWS Config rules using our Rule Development Kit (written in Python); and how to automatically remediate compliance violations when they are detected. Python basic skills and a basic understanding of boto3 are required for the coding portion of this workshop.
Scalable serverless architectures using event-driven design - MAD301 - Atlant...Amazon Web Services
Serverless architectures free customers to focus on solving business problems without the burden of managing infrastructure on AWS. However, building serverless applications requires a change in architectural thinking. In this talk, learn how to use powerful event-driven design patterns to architect highly scalable solutions that are enterprise-grade, robust, and cost effective. We showcase how to use AWS Lambda combined with messaging services, such as Amazon SQS and Amazon SNS, to improve time to market while delivering great quality service.
Gain visibility & real-time actionable security alerts with VPC Flow Logs & A...Amazon Web Services
The rapid adoption of cloud services and application migration has brought several challenges to network admins and security professionals, and it has made real-time visibility of the network an even more crucial priority. In this session, learn how Cisco Stealthwatch Cloud helps you leverage data you inherently create with AWS and within your network to prevent compute theft and orphaned compute, secure weak or incomplete access control lists (ACL), and enforce security policies beyond the traditional firewall while maintaining regulatory compliance by extending visibility across your entire network. This presentation is brought to you by AWS partner, Cisco Systems, Inc.
Technical deep dive: Cloud data management with Veeam and AWS - SVC202-S - Ch...Amazon Web Services
There are many things to consider when you move backups to AWS and manage data protection across on-premises and cloud environments. Veeam and N2WS (a Veeam company) enable data protection and portability to the AWS Cloud with enterprise-class backup and disaster recovery for Amazon EC2, Amazon RDS, Amazon DynamoDB, and Amazon EBS. In this technical session, learn how to scale for growth on the AWS Cloud and manage data protection for thousands of Amazon EC2 instances. We cover how to back up, restore, and protect databases and workloads with N2WS Backup & Recovery and the new Veeam Backup & Replication for AWS. This session is brought to you by AWS partner, Veeam.
Migrating monolithic applications with the strangler pattern - FSV303 - New Y...Amazon Web Services
“Lifting and shifting” an enterprise-scale application will yield some of the benefits of the cloud, but elasticity and agility may still be limited. Conversely, rewriting that application to be cloud-native can be costly in terms of both time and money and could cause you to miss market opportunities. This session explores the challenges financial institutions face when migrating their existing portfolio of applications to the cloud. Then, we share practical tips to migrate applications to realize cloud-native architectural benefits incrementally using the strangler pattern.
Enable Agile Development with Amazon Linux WorkSpaces and WorkLink - SVC203 -...Amazon Web Services
Developers today still spend too much time provisioning the resources they need to write code. Additionally, developing mobile and desktop applications for multiple OS and browser platforms slows down application delivery. In this session, we discuss how developers can use AWS end user computing services to save money on developer desktops and simplify application delivery for mobile and desktop applications. We go through best practices for deploying Amazon Linux WorkSpaces for your development teams. We also provide an in-depth discussion on our newest service, Amazon WorkLink, which provides secure access to company websites and web applications.
Designing security & governance via AWS Control Tower & Organizations - SEC30...Amazon Web Services
Whether it is per business unit or per application, many AWS customers use multiple accounts to meet their infrastructure isolation, separation of duties, and billing requirements. In this session, we cover considerations, limitations, and security patterns when building a multi-account strategy. We explore topics such as thought pattern, identity federation, cross-account roles, consolidated logging, and account governance. We conclude by presenting an enterprise-ready landing-zone framework and providing the background needed to implement an AWS Landing Zone using AWS Control Tower and AWS Organizations.
Making CI/CD pipelines safer with application monitoring and tracing - MAD202...Amazon Web Services
Building a CI/CD pipeline to automatically deliver your application into production provides great agility for a development team. However, to ensure safe deployments for your business and users, it’s important to use metrics and monitoring to automatically roll back when things go wrong. In this session, learn how to build a CI/CD pipeline that incorporates monitoring for automated rollback actions, and application tracing to help quickly determine what went wrong.
Moving desktops & applications to AWS with Amazon WorkSpaces & AppStream 2 - ...Amazon Web Services
IT organizations today need to support a mobile, flexible, global workforce and ensure that their users can be productive anywhere. Moving desktops and applications to AWS offers improved security, scale, and performance with cloud economics. In this session, we provide an overview of Amazon WorkSpaces and Amazon AppStream 2.0, and we discuss the use cases for each. Then, we dive deep into best practices for implementing Amazon WorkSpaces and AppStream 2.0, including how to integrate with your existing identity, security, networking, and storage solutions.
Using automation to drive continuous-compliance best practices - SEC208 - New...Amazon Web Services
Northwestern Mutual’s technology teams maintain a complex compliance environment for a diverse set of developers working within more than 100 AWS accounts. To drive best practices and ensure continuous compliance, the teams designed an AWS-based architecture using services such as AWS Lambda, Amazon DynamoDB, Amazon Simple Queue Service (Amazon SQS), and Amazon CloudWatch to auto-remediate misconfigurations. In this session, learn how these services help Northwestern Mutual swiftly correct configurations and integrate with tools like Slack and PagerDuty to create logs, notify developers and account owners of changes, and track trends in remediation.
Cloud Governance and Provisioning Management using AWS Management Tools and S...Amazon Web Services
As customers migrate to the cloud, IT needs to maintain structured compliance and governance while providing developers with the flexibility to manage cloud resources at scale. AWS provides a set of management tools that enables you to programmatically provision, monitor, and automate the components of your cloud environment. In this session, learn how you can use these tools to maintain consistent controls without restricting development velocity.
Enabling Governance, Compliance, Operational, and Risk Auditing with AWS Mana...Amazon Web Services
In this session, you’ll learn how to enable governance compliance and undertake operational and risk auditing of your AWS account through a combination of continuous monitoring auditing and evaluation of your AWS resources. With AWS management tools you can see a history of AWS API calls for your account, review changes in configurations and relationships among AWS resources, and dive into detailed resource configuration histories. You can determine your overall compliance with the configurations specified in your internal guidelines and you can give developers and systems administrators a secure and compliant means to create and manage AWS resources.
Operationalizing Microsoft Workloads (WIN320) - AWS re:Invent 2018Amazon Web Services
In this session, we discuss best practices and approaches for managing your Microsoft Windows-based infrastructure on AWS. We describe the AWS services that can help you manage Windows servers at scale and realize the maximum benefit of the cloud. In addition, we show you how to build simple and effective solutions to manage logging, configuration drift, inventory, licensing, and more. Please join us for a speaker meet-and-greet following this session at the Speaker Lounge (ARIA East, Level 1, Willow Lounge). The meet-and-greet starts 15 minutes after the session and runs for half an hour.
Operationalizing Microsoft Workloads, AWS Federal Pop-Up LoftAmazon Web Services
In this session, learn best practices and approaches for managing your Microsoft Windows-based infrastructure on AWS. Discover the AWS services that can help you manage Windows servers at scale and realize the maximum benefit of the cloud. Join us to learn how to build simple and effective solutions to manage logging, configuration drift, inventory, licensing, and more.
Using AWS Control Tower to govern multi-account AWS environments at scale - G...Amazon Web Services
AWS Control Tower is a new AWS service that cloud administrators can use to set up and govern their secure, compliant, multi-account environments on AWS. In this session, we show you how Control Tower automates the creation of a secure and compliant landing zone with best-practice blueprints for a multi-account structure, identity and federated access management, a central log archive, cross-account security audits, and workflows for provisioning accounts with pre-approved configurations. We also discuss guardrails—pre-packaged governance rules created for security, operations, and compliance that you can apply enterprise-wide or to groups of accounts to enforce policies or detect violations. Finally, we show you how to easily manage and monitor all this through the Control Tower dashboard.
AWS Control Tower is a new AWS service that cloud administrators can use to set up and govern their secure, compliant, multi-account environments on AWS. In this session, we show you how Control Tower automates the creation of a secure and compliant landing zone with best-practice blueprints for a multi-account structure, identity and federated access management, a central log archive, cross-account security audits, and workflows for provisioning accounts with pre-approved configurations. We also discuss guardrails—pre-packaged governance rules created for security, operations, and compliance that you can apply enterprise-wide or to groups of accounts to enforce policies or detect violations. Finally, we show you how to easily manage and monitor all this through the Control Tower dashboard.
Best Practices for Centrally Monitoring Resource Configuration & Compliance (...Amazon Web Services
Do you want to have a strong understanding of governance across all of your AWS accounts? Are you struggling to get centralized visibility across your entire organization? Join us in this session as we explore AWS Config, a service that enables centralized governance and resource monitoring. Learn best practices for enabling governance policies through a central account across multiple accounts in your organization, and monitor their compliance status using the multi-account, multi-region data aggregation capability. Also learn about recent launches and how customers are using AWS Config in their enterprises today.
AWS Summit Singapore 2019 | Next Generation Audit & Compliance - Learn how RH...AWS Summits
Speaker: Alejandra Artiguez, FSI Compliance Program Manager, APAC, AWS Customer Speaker: Clara Lee Hui Theng, Head Technology & Operations, RHB Bank Berhad (Singapore)
Security and Compliance is a shared responsibility between AWS and the customer. In this session we will examine the AWS Shared responsibility model, and AWS compliance programs customers can use to gain assurance of security controls in the cloud. We will dive-deep into a number of cloud native security services that customers can use to protect their critical systems when migrating to AWS. Finally we will review a next-generation approach to audit and continuous compliance leveraging automation to identify mis-configurations and perform automatic remediatation to protect your AWS workloads.
Accelerating Cloud Adoption in Federal Government and Regulated Sectors with ...Amazon Web Services
As federal agencies and regulated sectors embrace cloud and increasingly move production workloads to the cloud, governance becomes pivotal like never before. Adherence to the organization’s security and compliance posture while keeping it simple for the end-user, can be daunting. Agile Governance is the new mantra. In this session you will learn how AWS Service Catalog, now available in AWS GovCloud (US) as well, enables compliance controls and guardrails while provisioning AWS services, Marketplace software, and 3-tier applications. We will discuss ways to use AWS Service Catalog to integrate AWS with ITSM tools like ServiceNow to help customers with cloud adoption in a hybrid environment, with customer examples. You will also learn how AWS Service Catalog enhances automation of your CI/CD pipeline to enable DevSecOps while making it simple for the end-user to consume cloud services from its self-service portal.
In order to ensure security best practices in your AWS accounts, you must establish a security baseline and then enforce it across all of these accounts. In this session, you will learn how to use AWS CloudFormation and AWS Organizations to execute security best practices (AWS CloudTrail, AWS Config, Flow Logs, S3 Access logs, etc...) in scenarios where you are managing many AWS accounts across an organization. You will see how to leverage Service Catalog across multiple accounts. Learn how to store all of these logs in a centralized logging system such as Amazon ElasticSearch Service, set up alerts, and drift detection on anomalous or high-risk activity.
Need for Speed – Intro To Real-Time Data Streaming Analytics on AWS | AWS Sum...AWS Summits
AWS provides multiple ways to ingest and process real-time data generated from sources such as Edge device, logs, websites, mobile apps, IoT devices and more.
In this session we will compare the different tools and technologies and share best practices for when to use what.
The session will cover: Apache Kafka, Kinesis Data Streams/Firehose, MSK (Managed Kafka), Kinesis Data Analytics for SQL and Java (Flink), Apache Spark and more.
Need for Speed – Intro To Real-Time Data Streaming Analytics on AWS | AWS Sum...Amazon Web Services
AWS provides multiple ways to ingest and process real-time data generated from sources such as Edge device, logs, websites, mobile apps, IoT devices and more.
In this session we will compare the different tools and technologies and share best practices for when to use what.
The session will cover: Apache Kafka, Kinesis Data Streams/Firehose, MSK (Managed Kafka), Kinesis Data Analytics for SQL and Java (Flink), Apache Spark and more.
In this session, we discuss the best practices and approaches for managing your Microsoft Windows-based infrastructure on AWS. We describe the AWS services that can help you manage Windows servers at scale and realize the maximum benefit of the cloud. In addition, we show you how to build simple and effective solutions to manage logging, configuration drift, inventory, licensing, and more.
Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...Amazon Web Services
Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS.
In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.
Big Data per le Startup: come creare applicazioni Big Data in modalità Server...Amazon Web Services
La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup.
Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti.
Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.
Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi
Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.
Come spendere fino al 90% in meno con i container e le istanze spot Amazon Web Services
L’utilizzo dei container è in continua crescita.
Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili.
I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!
In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th.
Event Agenda :
Open banking so far (short recap)
• PSD2, OB UK, OB Australia, OB LATAM, OB Israel
Intro to Open Finance marketplace
• Scope
• Features
• Tech overview and Demo
The role of the Cloud
The Future of APIs
• Complying with regulation
• Monetizing data / APIs
• Business models
• Time to market
One platform for all: a Strategic approach
Q&A
Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...Amazon Web Services
Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc.
AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta.
Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.
OpsWorks Configuration Management: automatizza la gestione e i deployment del...Amazon Web Services
Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity.
AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet.
Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.
Microsoft Active Directory su AWS per supportare i tuoi Windows WorkloadsAmazon Web Services
Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.
Dal riconoscimento facciale al riconoscimento di frodi o difetti di fabbricazione, l'analisi di immagini e video che sfruttano tecniche di intelligenza artificiale, si stanno evolvendo e raffinando a ritmi elevati. In questo webinar esploreremo le possibilità messe a disposizione dai servizi AWS per applicare lo stato dell'arte delle tecniche di computer vision a scenari reali.
Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti.
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
Crea la tua prima serverless ledger-based app con QLDB e NodeJSAmazon Web Services
Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti.
Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire.
Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito.
In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.
Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline.
Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.
Database Oracle e VMware Cloud™ on AWS: i miti da sfatareAmazon Web Services
Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi.
La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.
In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.
Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.