Using Security to Build with Confidence in AWS - Trend Micro

•

3 likes•1,056 views

Using Security to Build with Confidence in AWS - Trend Micro Malaysia Sasha Pavlovic Director, Cloud and Datacenter Security | APAC

Using Security To Build
With Confidence In AWS
Sasha Pavlovic
Director, Cloud and Datacenter Security | APAC

The Story
More at aws.trendmicro.com
2012 re:Invent
SPR203 : Cloud Security is a Shared Responsibility
http://bit.ly/2012-spr203
2013 re:Invent
SEC208: How to Meet Strict Security & Compliance Requirements in the Cloud
http://bit.ly/2013-sec208
SEC307: How Trend Micro Build their Enterprise Security Offering on AWS
http://bit.ly/2013-sec307
2014 re:Invent
SEC313: Updating Security Operations for the Cloud
http://bit.ly/2014-sec313
SEC314: Customer Perspectives on Implementing Security Controls with AWS
http://bit.ly/2014-sec314

Shared Responsibility Model
AWS
Physical
Infrastructure
Network
Virtualisation
You
Operating System
Applications
Data
Service Configuration
More at aws.amazon.com/security

Vulnerability
©2015, Amazon Web Services, Inc. or its aﬃliates. All rights reserved

bash is a common command line interpreter

a:() { b; } | attack
10 | 10 vulnerability. Widespread & easy to exploit

Shellshock Impact
The image cannot be displayed. Your computer may not have enough memory to open the image, or the image may have been corrupted. Restart your computer, and then open the file again. If the red x still appears, you may have to delete the image and then insert it again.

1989
Fantastic summary by David A. Wheeler at http://www.dwheeler.com/essays/shellshock.html#timeline

"MicroTAC" by Redrum0486 at English Wikipedia
12.3oz

Time Since Last Event Event Action Action Timeline
1989-‐08-‐05
8:32
Added
to
codebase

27
days,
10:20:00
Released
to
public

9141
days,
21:18:35
Ini?al
report
React
Clock
starts

1
day,
22:19:13
More
details
React

2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25
5
days,
9:16:35
Limited
disclosure
::
CVE-‐2014-‐6271
React

2
days,
4:37:25
More
details
React

3:44:00
More
details
React

0:27:51
Public
disclosure
React

0:36:30
More
details
React

Important Shellshock Events
Time Since Last Event Event Action Action Timeline
1989-‐08-‐05
8:32
Added
to
codebase

27
days,
10:20:00
Released
to
public

9141
days,
21:18:35
Ini?al
report
React
Clock
starts

2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25
3:29:09 Official patch :: CVE-2014-7169 Patch 9 days, 19:17:00
3:15:00 Oﬃcial
patch
::
CVE-‐2014-‐7186,
CVE-‐2014-‐7187
Patch
4
days,
17:30:00

1 day, 11:55:00 Oﬃcial
patch
::
CVE-‐2014-‐6277
Patch
1
day,
11:55:00

Respond
©2015, Amazon Web Services, Inc. or its aﬃliates. All rights reserved
Day 1

aws.amazon.com/architecture : Web application hosting

TCP : 443TCP : 443 TCP : 4433TCP : 4433
Primary workflow for our deployment

AWS VPC Checklist
Review
IAM roles
Security groups
Network segmentation
Network access control lists (NACL)
More in the Auditing Security Checklist for Use of AWS, media.amazonwebservices.com/AWS_Auditing_Security_Checklist.pdf

HTTPSTPS
Intrusion prevention can look at each packet and then take action depending on what it finds

Review
All instances covered
Workload appropriate rules
Centrally managed
Security controls must scale out automatically with the deployment

Repair
©2015, Amazon Web Services, Inc. or its aﬃliates. All rights reserved
Day 2

All instances deployment from task-specific AMI
TCP : 443TCP : 443 TCP : 4433TCP : 4433

Workflow should be completely automated
Instantiate DestroyConfigure
AMI Creation Workflow
Bake Instantiate Test

Instances tend to drift from the known good state, monitoring key files & processes is important
AMI Instance
AlertIntegrity Monitoring

Keys
Respond
Review configuration
Apply intrusion prevention
Repair
Patch vulnerability in new AMI
Leverage integrity monitoring

KUALA LUMPUR
©2015, Amazon Web Services, Inc. or its aﬃliates. All rights reserved

When serious vulnerabilities like Shellshock or Heartbleed are found, you know you should respond quickly. But when you’re juggling many priorities, and are more comfortable developing apps than security policies, emergency updates may fall to the bottom of the list. Is there a better way to protect your workloads, without a lot of work? In AWS, you approach everything in your infrastructure as an API. If you take the same approach to security, you can automate protection for zero-day vulnerabilities, without impacting agility or architecture flexibility. In this session, we’ll show you how to use AWS security groups, virtual private networks, and security capabilities like intrusion detection and prevention to defend what you put in the cloud. We will use the recent Shellshock vulnerability as a real-world threat scenario and walk you through how to combine AWS features and workload-aware security controls to prevent hackers from exploiting similar zero-day threats. Learn simple, easy to deploy security tools and techniques to protect workloads – that don't require a PhD in cyber security.

Using Security to Build with Confidence in AWS

Amazon Web Services

You don’t need to be a security expert to protect your organizations data in the cloud. You don’t need to be a security expert to protect your workloads on AWS. You just need to be informed of the many security tools available in AWS, and learn how to use them. Taking a highly automated approach to security, you can use key features of the AWS Cloud to transform security in your organization. As with infrastructure as an API, security as an API allows you to move rapidly & stay secure. From AWS security groups, to virtual private networks, to security tools, you need to learn how to automate and accelerate. In this talk, you’ll see how various AWS features and cloud-aware security controls can work together to protect your deployments. Using real-world examples, you’ll come away with an understanding of steps you can take to ensure that you maximize the security of your deployment while minimizing the work it takes to keep it secure. You will learn a logical approach to modern security that you can immediately apply to your own AWS deployments. You will learn how to use security tools and techniques to help you build with confidence.

Security Automation: Spend Less Time Securing Your Applications.

Amazon Web Services

While security and compliance outside the cloud can be an endless struggle against long checklists, the cloud makes it possible to both have a perfect inventory of resources and their state at any given point in time, and the APIs to make the changes needed to ensure a good posture on security. Moving to the cloud can simplify and improve your security posture by shifting a large portion of security management burden to an infrastructure environment that’s designed and managed to the specifications of some of the world’s most security-sensitive organizations. AWS also provides you the tools to automate many common security tasks. We look at effective implementations of security automation that demonstrate why more and more organisations believe and have demonstrated that " you can be more secure in the AWS Cloud than in your own data center. Speaker: Myles Hosford, Security Solution Architect, AWS APAC

Inspector

Sudipto Chakraborty

Amazon guard duty_lab

Bela Sojina MBA, PMP

(HLS401) Architecting for HIPAA Compliance on AWS | AWS re:Invent 2014

Amazon Web Services

This session brings together the interests of engineering, compliance, and security experts, and shows you how to align your AWS workload to the controls in the HIPAA Security Rule. You hear from customers who process and store Protected Health Information (PHI) on AWS, and you learn how they satisfied their compliance requirements while maintaining agility. This session helps security and compliance experts find out what is technically possible on AWS and learn how implementing the Technical Safeguards in the HIPAA Security Rule can be simple and familiar. We walk through the Technical Safeguards of the Security Rule and map them to AWS features and design choices to help developers, operations teams, and engineers speak the language of their security and compliance peers.

Architecting for Greater Security on AWS

Amazon Web Services

Leveraging AWS for your business provides a catalyst for security programs as customers inherit a faster pace of security innovation simply by using AWS. This session highlights design and architecture patterns customers can employ to measurably improve the security of their organization. In this session, customers explore design patterns for data security using encryption, strong access controls, and least privilege; for implementing detective security controls, such as logging and monitoring, at scale; and for implementing a defense-in-depth network security architecture.

Defending your workloads with aws waf and deep security

Mark Nunnikhoven

Myles Hosford, Security Solution Architect, APAC, AWS James Wilkins, Lead of the Cloud Task Force, Association of Banks Singapore (ABS) In this session we will explore the current financial regulatory landscape and future compliance trends. We will dive deep on to how to leverage AWS services to implement next generation security and compliance at scale. The session will be delivered by Myles Hosford, APAC Security Solution Architect, and James Wilkins, Lead of the Cloud Task Force for the Association of Banks Singapore (ABS).

Office 365 Security: Top Priorities for 30 Days, 90 Days and Beyond

Priyanka Aash

Based on investigations of real-world attacks, Microsoft Office 365 cybersecurity experts provide a prescriptive approach to identifying and implementing the most critical security controls to protect your Office 365 tenant. You will learn threats and defenses change from on-premises attacks and what Microsoft recommends for quickly protecting against the most likely and impactful risks. (Source: RSA Conference USA 2018)

Shift Left - How to improve your security with checkov before it’s going to p...

Anton Grübel

(ARC307) Infrastructure as Code

Amazon Web Services

While many organizations have started to automate their software develop processes, many still engineer their infrastructure largely by hand. Treating your infrastructure just like any other piece of code creates a “programmable infrastructure” that allows you to take full advantage of the scalability and reliability of the AWS cloud. This session will walk through practical examples of how AWS customers have merged infrastructure configuration with application code to create application-specific infrastructure and a truly unified development lifecycle. You will learn how AWS customers have leveraged tools like CloudFormation, orchestration engines, and source control systems to enable their applications to take full advantage of the scalability and reliability of the AWS cloud, create self-reliant applications, and easily recover when things go seriously wrong with their infrastructure.

AWS Summit Singapore Webinar Edition | Building Tomorrow’s Financial Services...

Amazon Web Services

Security Teams & Tech In A Cloud World

Mark Nunnikhoven

Security in the cloud is fundamentally different. Not so much due to the technology--though there's plenty of differences there--but more with respect to the way that security is applied and how it's run. Over the past few years, we've seen a radical shift in how development and operational teams work together. Security teams have been left out in the cold and are still viewed as the "No" team. It doesn't have to be that way. Cloud technologies have enabled new work flows and models for businesses and other teams...security is no different. We just have to wake up and take advantage of the new ecosystem. When security teams embrace change, the boundaries start to dissolve and security can finally be built in instead of bolted on. In this session, we'll look at some of the challenges involved in this shift, how it impacts your teams, your skill set, and how a modern approach to defence will improve your security posture. Presented at BC Aware Day, 31-Jan-2017

Containerization with Azure

Pranav Ainavolu

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Amazon Web Services

Keynote - Cloudy Vision: How Cloud Integration Complicates Security

CloudVillage

The cloud is compelling and in many cases necessary for organizations to effectively operate. Cloud security, on the other hand, is not as clear. Many cloud services need a hook into the on-premises environment in order to synchronize users and groups. Additionally, cloud security controls vary by the provider in availability, capability, and cost. This results in a disjointed view of user authentication, security, and potential configuration issues. This talk explores some common cloud configuration scenarios and associated security issues.

Integrating Jira Software Cloud With the AWS Code Suite

Atlassian

In this talk, Jay Yeras, Partner Solutions Architect at Amazon Web Services, will demonstrate how to customize, build, and host your Connect app on AWS. Learn best practices on how to containerize the application and store a custom container image in Amazon ECR. Jay will share sample code based on AWS CloudFormation to quickly provision a highly scalable and fully managed container orchestration service running on AWS Fargate. Build a CI/CD pipeline using AWS CodePipeline, AWS CodeCommit and AWS CodeBuild for automated deployments. Lastly, deploy the solution as an Atlassian Marketplace app. This solution provides customers using the AWS Code Suite of services with the ability to report on build state and other relevant data through AWS Lambda based integrations that leverage the Jira REST APIs to push relevant details about the status of the pipeline in near real-time to Jira Software Cloud.

(SPOT303) Security Operations at Massive Scale

Amazon Web Services

This session, co-led by Steve Schmidt, AWS Chief Information Security Officer, and George Stathakopoulos, Amazon.com VP of Information Security, gives a unique view of how a global provider and customer work together to deliver security on a massive scale. Steve and George will show some of the innovations that help their teams deliver world-class security operations at scale. This session is not moderated but is a conversation between two world-class security experts with differing responsibilities for the Amazon.com and Amazon Web Services global security posture. Join this session and walk away with a deeper understanding of the underlying security innovations powering the cloud and how you can enable them in your business.

From Zero to ATO: A Step-by-Step Guide on the DoD Compliance Framework

Amazon Web Services

Are you a member of the Department of Defense (DoD) and want to simplify the process to cloud deployment? Learn how you can adopt AWS's utility-based cloud services to process, store, and transmit DoD data. This presentation is a step-by-step guide from AWS on how to navigate the DoD compliance framework. The guide outlines the planning, deployment, accreditation, and continuous monitoring phases to get you to the cloud. AWS enables military organizations and their business associates to leverage the secure AWS environment through our attainment of a provisional authority to operate (P-ATO) from the Defense Information Systems Agency (DISA).

DevOps on AWS

Amazon Web Services

Building a social network in under 4 weeks with Serverless and GraphQL

Yan Cui

Serverless technologies drastically simplify the task of building modern, scalable APIs in the cloud, and GraphQL makes it easy for frontend teams to consume these APIs and to iterate quickly on your product idea. Together, they are a perfect combination for a product-focused, full-stack team to deliver customer values quickly. In this talk, see how we built a new social network mobile app in under 4 weeks using Lambda, AppSync, DynamoDB and Algolia. How we approached CI/CD, testing, authentication and lessons we learnt along the way. Recording of this talk is available at https://www.youtube.com/watch?v=evsz__BDprs Real-world serverless podcast: https://realworldserverless.com Learn Lambda best practices: https://lambdabestpractice.com Blog: https://theburningmonk.com Consulting services: https://theburningmonk.com/hire-me Production-Ready Serverless workshop: https://productionreadyserverless.com

Migrating the GoPro Plus Cloud Service to Amazon ECS

Amazon Web Services

Understanding AWS Security

Amazon Web Services

The AWS cloud infrastructure has been architected to be one of the most flexible and secure cloud computing environments available today. Security for AWS is about three related elements: visibility, auditability, and control. You have to know what you have and where it is before you can assess the environment against best practices, internal standards, and compliance standards. Controls enable you to place precise, well-understood limits on the access to your information. Did you know, for example, that you can define a rule that says that “Tom is the only person who can access this data object that I store with Amazon, and he can only do so from his corporate desktop on the corporate network, from Monday-Friday 9-5 and when he uses MFA?” That’s the level of granularity you can choose to implement if you wish. In this session, we’ll cover these topics to provide a practical understanding of the security programs, procedures, and best practices you can use to enhance your current security posture.

(SEC404) Incident Response in the Cloud | AWS re:Invent 2014

Amazon Web Services

You've employed the practices outlined for incident detection, but what do you do when you detect an incident in the cloud? This session walks you through a hypothetical incident response on AWS. Learn to leverage the unique capabilities of the AWS environment when you respond to an incident, which in many ways is similar to how you respond to incidents in your own infrastructure. This session also covers specific environment recovery steps available on AWS.

AWS re:Invent 2017 re:View

Mark Nunnikhoven

Protect Office 365 with Azure Sentinel

Nanddeep Nachan

IglooConf 2020: Best practices of securing web applications running on Azure ...

Karl Ots

The multitude of security controls and guidelines for both Kubernetes and Azure can be overwhelming. Based on real-life experiences from securing web applications running on Azure Kubernetes Service, Karl has compiled a list of best practices that bring them together. In this session, you will learn how to build, operate and develop secure web applications on top of Azure Kubernetes Service. After this session, you will know which security controls are available, how effective they are and what will be the cost of implementing them.

Deep Dive: Developing, Deploying & Operating Mobile Apps with AWS

Amazon Web Services

Next-Generation Firewall Services VPC Integration

Amazon Web Services

Protecting a small number of VPCs with a next-generation firewall is relatively easy, but what happens when you have hundreds of VPCs and regularly add more as business groups or new apps come on-line? How can you maintain a prevention architecture without slowing the business? One concept is to build a services VPC that protects your existing and new VPCs. This deep dive session will discuss how to integrate next-generation firewalls in a services VPC with the Palo Alto Networks VM-Series in AWS. Topics will include architectural design considerations, routing recommendations, and dynamic fail-over. Session sponsored by Palo Alto Networks.

What's hot

AWS Summit Singapore - Next Generation Security

Amazon Web Services

Office 365 Security: Top Priorities for 30 Days, 90 Days and Beyond

Priyanka Aash

Shift Left - How to improve your security with checkov before it’s going to p...

Anton Grübel

(ARC307) Infrastructure as Code

Amazon Web Services

AWS Summit Singapore Webinar Edition | Building Tomorrow’s Financial Services...

Amazon Web Services

Security Teams & Tech In A Cloud World

Mark Nunnikhoven

Containerization with Azure

Pranav Ainavolu

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Amazon Web Services

Keynote - Cloudy Vision: How Cloud Integration Complicates Security

CloudVillage

Integrating Jira Software Cloud With the AWS Code Suite

Atlassian

(SPOT303) Security Operations at Massive Scale

Amazon Web Services

From Zero to ATO: A Step-by-Step Guide on the DoD Compliance Framework

Amazon Web Services

DevOps on AWS

Amazon Web Services

Building a social network in under 4 weeks with Serverless and GraphQL

Yan Cui

Migrating the GoPro Plus Cloud Service to Amazon ECS

Amazon Web Services

Understanding AWS Security

Amazon Web Services

(SEC404) Incident Response in the Cloud | AWS re:Invent 2014

Amazon Web Services

AWS re:Invent 2017 re:View

Mark Nunnikhoven

Protect Office 365 with Azure Sentinel

Nanddeep Nachan

IglooConf 2020: Best practices of securing web applications running on Azure ...

Karl Ots

What's hot (20)

AWS Summit Singapore - Next Generation Security

Office 365 Security: Top Priorities for 30 Days, 90 Days and Beyond

Shift Left - How to improve your security with checkov before it’s going to p...

(ARC307) Infrastructure as Code

AWS Summit Singapore Webinar Edition | Building Tomorrow’s Financial Services...

Security Teams & Tech In A Cloud World

Containerization with Azure

Using Amazon Inspector to Discover Potential Security Issues - AWS Online Tec...

Keynote - Cloudy Vision: How Cloud Integration Complicates Security

Integrating Jira Software Cloud With the AWS Code Suite

(SPOT303) Security Operations at Massive Scale

From Zero to ATO: A Step-by-Step Guide on the DoD Compliance Framework

DevOps on AWS

Building a social network in under 4 weeks with Serverless and GraphQL

Migrating the GoPro Plus Cloud Service to Amazon ECS

Understanding AWS Security

(SEC404) Incident Response in the Cloud | AWS re:Invent 2014

AWS re:Invent 2017 re:View

Protect Office 365 with Azure Sentinel

IglooConf 2020: Best practices of securing web applications running on Azure ...

Viewers also liked

Deep Dive: Developing, Deploying & Operating Mobile Apps with AWS

Amazon Web Services

Next-Generation Firewall Services VPC Integration

Amazon Web Services

Session Sponsored by Trend Micro: 3 Secrets to Becoming a Cloud Security Supe...

Amazon Web Services

While security is a top concern in every organization these days, it often gets a bad rap. In many minds, security has the reputation of the bothersome villain who attempts to hinder performance or restrain agility. In this session we will outline three strategies to protect your valuable workloads, without falling into traditional security traps. We will walk through three stories of EC2 security superheroes who saved the day by overcoming compliance and design challenges, using a (not so) secret arsenal of AWS and Trend Micro security tools. Key takeaways from this session include how to: - Design a workload-centric security architecture - Improve visibility of AWS-only or hybrid environments - Stop patching live instances but still prevent exploits Speaker: Sasha Pavlovic, Director, Cloud & Datacentre Security, Asia Pacific, Trend Micro

AWS Summit Auckland- Developing Applications for IoT

Amazon Web Services

Getting Started with the Hybrid Cloud: Enterprise Backup and Recovery

Amazon Web Services

Deep Dive on Amazon S3

Amazon Web Services

AWS Summit Auckland - Building a Server-less Data Lake on AWS

Amazon Web Services

Getting Started with the Hybrid Cloud: Enterprise Backup and Recovery

Amazon Web Services

Expanding Your Data Center with Hybrid Cloud Infrastructure

Amazon Web Services

Getting started with amazon aurora - Toronto

Amazon Web Services

Hack-Proof Your Cloud: Responding to 2016 Threats

Amazon Web Services

Migrating from the data center to the cloud requires users to rethink much of what they do to secure their applications. CloudCheckr COO Aaron Klein will highlight effective strategies and tools that AWS users can employ to improve their security posture. The idea of physical security morphs as infrastructure becomes virtualized by AWS APIs. In a new world of ephemeral, auto-scaling infrastructure, users need to adapt their security architecture to face both compliance and security threats. Specific emphasis will be placed upon leveraging native AWS services and the talk will include concrete steps that users can begin employing immediately. Session sponsored by CloudCheckr.

Grow Your SMB Infrastructure on the AWS Cloud

Amazon Web Services

S'étendre à l'international

Amazon Web Services

AWS Summit Auckland Sponsor Presentation - Vocus

Amazon Web Services

Creating Your Virtual Data Center: VPC Fundamentals and Connectivity Options

Amazon Web Services

In this session, we will walk through the fundamentals of Amazon Virtual Private Cloud (VPC). First, we will cover build-out and design fundamentals for VPC, including picking your IP space, subnetting, routing, security, NAT, and much more. We will then transition into different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision-makers interested in understanding the building blocks AWS makes available with VPC and how you can connect this with your offices and current data center footprint.

Sony DAD NMS & Our Migration to the AWS Cloud

Amazon Web Services

Another Day, Another Billion Packets

Amazon Web Services

In this session, we walk through the Amazon VPC network presentation and describe the problems we were trying to solve when we created it. Next, we walk through how these problems are traditionally solved, and why those solutions are not scalable, inexpensive, or secure enough for AWS. Finally, we provide an overview of the solution that we've implemented and discuss some of the unique mechanisms that we use to ensure customer isolation, get packets into and out of the network, and support new features like VPC endpoints.

AWS Webcast - Explore the AWS Cloud

Amazon Web Services

Time to Science/Time to Results: Transforming Research in the Cloud

Amazon Web Services

This session demonstrates how cloud can accelerate breakthroughs in scientific research by providing on-demand access to powerful computing. You will gain insight into how scientific researchers are using the cloud to solve complex science, engineering, and business problems that require high bandwidth, low latency networking and very high compute capabilities. You will hear how leveraging the cloud reduces the costs and time to conduct large scale, worldwide collaborative research. Researchers can then access computational power, data storage, and supercomputing resources, and data sharing capabilities in a cost-efficient manner without implementation delays. Disease research can be accomplished in a fraction of the time, and innovative researchers in small schools or distant corners of the world have access to the same computing power as those at major research institutions by leveraging Amazon EC2, Amazon S3, optimizing C3 instances and more to increase collaboration. This session will provide best practices and insight from UC Berkeley AMP Lab on the services used to connect disparate sets of data to drive meaningful new insight and impact.

Choosing the Right Database for the Job: Relational, Cache, or NoSQL?

Amazon Web Services

Developers and DBAs from a traditional relational background are spoilt for choice when looking to integrate caching and NoSQL into an application architecture to solve scaling problems and reduce costs. Even when using relational databases there are 3 managed database services on AWS for the MySQL engine alone. Trying to evaluate all the options often creates analysis paralysis, resulting in a reluctance to try something new or different. This session will guide you through a series of use cases that use different databases to solve business problems that customers face today.

Viewers also liked (20)

Deep Dive: Developing, Deploying & Operating Mobile Apps with AWS

Next-Generation Firewall Services VPC Integration

Session Sponsored by Trend Micro: 3 Secrets to Becoming a Cloud Security Supe...

AWS Summit Auckland- Developing Applications for IoT

Getting Started with the Hybrid Cloud: Enterprise Backup and Recovery

Deep Dive on Amazon S3

AWS Summit Auckland - Building a Server-less Data Lake on AWS

Getting Started with the Hybrid Cloud: Enterprise Backup and Recovery

Expanding Your Data Center with Hybrid Cloud Infrastructure

Getting started with amazon aurora - Toronto

Hack-Proof Your Cloud: Responding to 2016 Threats

Grow Your SMB Infrastructure on the AWS Cloud

S'étendre à l'international

AWS Summit Auckland Sponsor Presentation - Vocus

Creating Your Virtual Data Center: VPC Fundamentals and Connectivity Options

Sony DAD NMS & Our Migration to the AWS Cloud

Another Day, Another Billion Packets

AWS Webcast - Explore the AWS Cloud

Time to Science/Time to Results: Transforming Research in the Cloud

Choosing the Right Database for the Job: Relational, Cache, or NoSQL?

Similar to Using Security to Build with Confidence in AWS - Trend Micro

Using Security To Build With Confidence in AWS – Justin Foster, Director of P...

Amazon Web Services

In this talk, you’ll see how various AWS features and cloud-aware security controls can work together to protect your deployments. Using real-world examples, you’ll come away with an understanding of steps you can take to ensure that you maximise the security of your deployment while minimising the work it takes to keep it secure. You will learn a logical approach to modern security that you can immediately apply to your own AWS deployments. You will learn how to use security tools and techniques to help you build with confidence.

Using Security To Build  With Confidence In AWS - Trend Micro

Amazon Web Services

You don’t need to be a security expert to protect your organisations data in the cloud. You don’t need to be a security expert to protect your workloads on AWS. You just need to be informed of the many security tools available in AWS, and learn how to use them. Taking a highly automated approach to security, you can use key features of the AWS Cloud to transform security in your organisation. As with infrastructure as an API, security as an API allows you to move rapidly & stay secure. From AWS security groups, to virtual private networks, to security tools, you need to learn how to automate and accelerate. In this talk, you’ll see how various AWS features and cloud-aware security controls can work together to protect your deployments. Using real-world examples, you’ll come away with an understanding of steps you can take to ensure that you maximise the security of your deployment while minimising the work it takes to keep it secure. You will learn a logical approach to modern security that you can immediately apply to your own AWS deployments. You will learn how to use security tools and techniques to help you build with confidence.

Using Security To Build With Confidence - Session Sponsored by Trend Micro

Amazon Web Services

Using Security To Build With Confidence You don’t need to be a security expert to protect your organisations data in the cloud. You don’t need to be a security expert to protect your workloads on AWS. You just need to be informed of the many security tools available in AWS, and learn how to use them. Taking a highly automated approach to security, you can use key features of the AWS Cloud to transform security in your organisation. As with infrastructure as an API, security as an API allows you to move rapidly & stay secure. From AWS security groups, to virtual private networks, to security tools, you need to learn how to automate and accelerate. In this talk, you’ll see how various AWS features and cloud-aware security controls can work together to protect your deployments. Using real-world examples, you’ll come away with an understanding of steps you can take to ensure that you maximise the security of your deployment while minimising the work it takes to keep it secure. You will learn a logical approach to modern security that you can immediately apply to your own AWS deployments. You will learn how to use security tools and techniques to help you build with confidence.

(DVO207) Defending Your Workloads Against the Next Zero-Day Attack

Amazon Web Services

"When serious vulnerabilities like Shellshock or Heartbleed are discovered, you know you should respond quickly. But when you’re juggling many priorities and are more comfortable developing apps than security policies, emergency updates may fall to the bottom of the list. Is there a better way to protect your workloads without a lot of work? In AWS, your entire deployment and infrastructure is code. Your security controls have to take the same approach. When your entire stack is code, you can automate protection for zero-day vulnerabilities, without impacting your architecture or adding operational burden. In this session, you’ll learn how to respond and recover from the next zero-day vulnerability. Using real-world examples, you’ll see how you can combine AWS features, such as security groups, VPCs, and IAM roles with workload-aware security controls like intrusion prevention to automate your defenses. Learn simple and easy-to-deploy security techniques that protect your workloads, but don’t require a PhD in cybersecurity. Session sponsored by Trend Micro."

Using Security to Build with Confidence in AWS - Trend Micro

Amazon Web Services

(SEC304) Architecting for HIPAA Compliance on AWS

Amazon Web Services

"This session brings together the interests of engineering, compliance, and security as you align healthcare workloads to the controls in the HIPAA Security Rule. We'll discuss how to architect for HIPAA compliance using AWS, and introduce a number of new services added to the HIPAA program in 2015, such as Amazon Relational Database Service (RDS), Amazon DynamoDB, and Amazon Elastic MapReduce (EMR). You'll hear from customers who process and store Protected Health Information on AWS, and how they satisfied their compliance requirements while maintaining agility. This session helps security and compliance experts see what's technically possible on AWS, and how implementing the Technical Safeguards in the HIPAA Security Rule is simple and familiar. We map the Security Rule's Technical Safeguards to AWS features and design patterns to help developers, operations teams, and engineers speak the language of their security and compliance peers."

Azure Spring Cloud Workshop - June 17, 2020

VMware Tanzu

Automate the Provisioning of Secure Developer Environments on AWS PPT

Amazon Web Services

Providing development and engineering teams with access to cloud resources introduces challenges around deploying the proper security policies. Organizations need automated security solutions that enable their engineers to spin up their own secure environments for application development with a push of a button. Join our upcoming webinar with Palo Alto Networks, REAN Cloud, and AWS, to learn how organizations are leveraging Palo Alto Networks VM-Series and REAN Cloud to build a simple, fast, and automated solution on AWS that helps provision secure environments for developers.

Onsite Training - Secure Web Applications with Alibaba Cloud Web Application...

Forster CHIU

Automating nist 800 171 compliance in AWS Govcloud (US)

Amazon Web Services

Are you a systems integrator (SI), small, or mid-size enterpriser required to secure controlled unclassified Information (CUI) data in order to meet NIST 800-171 security requirements? Learn how to simplify and automate compliance for your government customers. Learn how to architect and document IT workloads to meet NIST 800-171 security requirements in AWS GovCloud (US) – Amazon’s isolated cloud region built for sensitive data and regulated workloads. The slides present: · How to use AWS Enterprise Accelerator for Compliance Quick Start tools to accelerate compliance. · The steps necessary to modify the security control matrix (SCM) for specific customer workloads. · AWS tools and techniques to make security and compliance easier, while improving the security posture of your system.

Masterless Puppet Using AWS S3 Buckets and IAM Roles

Malcolm Duncanson, CISSP

Behind the Code 'September 2022 // by Exness

Maxim Gaponov

Advanced Continuous Delivery on AWS

Amazon Web Services

Continuous delivery makes teams more agile and quickens the pace of innovation. Too often, though, teams adopt continuous delivery without defining the meta components or putting the right safety mechanisms in place. In this session, we'll start from the meta components and transform a typical software release process into one that will scale and is safe. We'll use DevOps techniques like continuous integration, a variety of non-production testing stages, rollbacks, redundancy, canary deployments and synthetic tests. We'll use AWS services such as Lambda, CloudFormation, CodePipeline, CodeBuild, CodeDeploy and CloudWatch alarms and dashboards. Speakers: Brent Maxwell, Partner Solutions Architect, Amazon Web Services Daniel Zoltak, Solutions Architect, Amazon Web Services

Week1SP800-145 NIST Cloud Definitionhttpnvlpubs.nist.govni.docx

philipnelson29183

Week1 SP800-145 NIST Cloud Definition http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-145.pdf NIST Cloud Architecture https://bigdatawg.nist.gov/_uploadfiles/M0008_v1_7256814129.pdf Week2 Cloud computing security concerns – find pdf file Security_for_Cloud_Computing-Final http://www.cloud-council.org/deliverables/CSCC-Security-for-Cloud-Computing-10-Steps-to-Ensure-Success.pdf Week3 Video: Introduction to AWS https://aws.amazon.com/products/ Overview of Amazon Web Services https://d0.awsstatic.com/whitepapers/aws-overview.pdf Signing-up for AWS https://aws.amazon.com/getting-started/ Getting Started with AWS http://docs.aws.amazon.com/gettingstarted/latest/awsgsg-intro/gsg-aws-intro.html READ THIS TABS · Getting Started with AWS · AWS Overview · Compute and Networking Services · Storage and Content Delivery Services · Security and Identity Services · Database Services · Analytics Services · Application Services · Management Tools Week4 Getting Started with Amazon EC2 Linux Instances http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EC2_GetStarted.html Getting Started with Amazon EC2 Windows Instances http://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/EC2_GetStarted.html Getting Started with Amazon Simple Storage Service http://docs.aws.amazon.com/AmazonS3/latest/gsg/GetStartedWithS3.html · Amazon S3 Basics · Sign Up for Amazon S3 · · Create a Bucket · Add an Object to a Bucket · View an Object · Move an Object · Delete an Object and Bucket Week5 Setting Up for Amazon RDS http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_SettingUp.html Creating a MySQL DB Instance and Connecting to a Database on a MySQL DB Instance http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_GettingStarted.CreatingConnecting.MySQL.html Best Practices for Amazon RDS http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/CHAP_BestPractices.html Week 6 Hosting a Web App on Amazon Web Services http://docs.aws.amazon.com/elasticbeanstalk/latest/dg/php-hadrupal-tutorial.html Includes this sections (have the same site address) Setting Up to Host a Web App on AWS Create an Application Server Create a Database Server Deploy Your App Scale and Load-Balance Your Web App Associate a Domain Name with Your Website Using Amazon Route 53 (optional) Clean Up Week 7 Hosting a .NET Web App on Amazon Web Services https://learn.umuc.edu/d2l/le/content/198389/Home?itemIdentifier=D2L.LE.Content.ContentObject.ModuleCO-8177271 Includes this sections Setting Up to Host a Web App on AWS Create a Bucket for the Files for Your App Create an Application Server Create a Database Server Deploy Your App Scale and Load-Balance Your Web App Associate a Domain Name with Your Website Using Amazon Route 53 (optional) Clean Up Week 8 Intro_to_AWS_Security https://d0.awsstatic.com/whitepapers/Security/Intro_to_AWS_Security.pdf Aws-security-best-practices – find pdf file AWS_Security_Whitepaper https://d0.awsstatic.com/whitepapers/Security/AWS_S.

Week 4 lecture material cc (1)

Ankit Gupta

week 4_watermark.pdfffffffffffffffffffff

anushka2002ece

Put Your Existing Application On Windows Azure

Maarten Balliauw

Amazon Web Services User Group Sydney - March 2018

PolarSeven Pty Ltd

Hosted by PolarSeven Cloud Consulting - http://polarseven.com Our monthly AWS User Group Sydney presentation night. http://www.meetup.com/AWS-Sydney/ Introductions and What's New In AWS - by PolarSeven" Session 1: Advanced Monitoring for AWS environments Dynatrace is the first AI assisted monitoring platform, offering a revolutionary approach to managing the operational complexity of microservices and cloud centric applications. Presenter: Kevin Leng, Senior SE, APAC Dynatrace https://www.dynatrace.com/ See video presentation here https://youtu.be/MUV_-E3nQGM Session 2: Cost Optimization and Cost Control - Best Practises Join CloudHealth as we explore the key challenge organisations face in managing cloud cost. From our key insights partnering with enterprises around the globe we will share our defined blueprint for cost optimisation and introducing cost controls into your cloud strategy. Presenter: Richard Economides, Solution Architect CloudHealth https://www.cloudhealthtech.com/ Watch the video presentation here https://youtu.be/rAOfXssTLo8

Head in the Clouds? Let’s get serious about how to benefit from Cloud platfor...

Digital Transformation EXPO Event Series

Richard will look at the reasoning behind the current move towards Cloud-based resource usage and identify the many areas of risk that must be considered when a migration project is being planned. He will look closely at emerging threats and explain how these can be confronted using the appropriate Cloud security strategy and solutions. He will also look at the various different models of Cloud and define methodologies to assist any organisation to be compliant with current and future legislation that governs data usage and protection.

Simplify security with Trend Micro Managed Rules for AWS WAF

Amazon Web Services

Similar to Using Security to Build with Confidence in AWS - Trend Micro (20)

Using Security To Build With Confidence in AWS – Justin Foster, Director of P...

Using Security To Build  With Confidence In AWS - Trend Micro

Using Security To Build With Confidence - Session Sponsored by Trend Micro

(DVO207) Defending Your Workloads Against the Next Zero-Day Attack

Using Security to Build with Confidence in AWS - Trend Micro

(SEC304) Architecting for HIPAA Compliance on AWS

Azure Spring Cloud Workshop - June 17, 2020

Automate the Provisioning of Secure Developer Environments on AWS PPT

Onsite Training - Secure Web Applications with Alibaba Cloud Web Application...

Automating nist 800 171 compliance in AWS Govcloud (US)

Masterless Puppet Using AWS S3 Buckets and IAM Roles

Behind the Code 'September 2022 // by Exness

Advanced Continuous Delivery on AWS

Week1SP800-145 NIST Cloud Definitionhttpnvlpubs.nist.govni.docx

Week 4 lecture material cc (1)

week 4_watermark.pdfffffffffffffffffffff

Put Your Existing Application On Windows Azure

Amazon Web Services User Group Sydney - March 2018

Head in the Clouds? Let’s get serious about how to benefit from Cloud platfor...

Simplify security with Trend Micro Managed Rules for AWS WAF

More from Amazon Web Services

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Amazon Web Services

Il Forecasting è un processo importante per tantissime aziende e viene utilizzato in vari ambiti per cercare di prevedere in modo accurato la crescita e distribuzione di un prodotto, l’utilizzo delle risorse necessarie nelle linee produttive, presentazioni finanziarie e tanto altro. Amazon utilizza delle tecniche avanzate di forecasting, in parte questi servizi sono stati messi a disposizione di tutti i clienti AWS. In questa sessione illustreremo come pre-processare i dati che contengono una componente temporale e successivamente utilizzare un algoritmo che a partire dal tipo di dato analizzato produce un forecasting accurato.

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Amazon Web Services

La varietà e la quantità di dati che si crea ogni giorno accelera sempre più velocemente e rappresenta una opportunità irripetibile per innovare e creare nuove startup. Tuttavia gestire grandi quantità di dati può apparire complesso: creare cluster Big Data su larga scala sembra essere un investimento accessibile solo ad aziende consolidate. Ma l’elasticità del Cloud e, in particolare, i servizi Serverless ci permettono di rompere questi limiti. Vediamo quindi come è possibile sviluppare applicazioni Big Data rapidamente, senza preoccuparci dell’infrastruttura, ma dedicando tutte le risorse allo sviluppo delle nostre le nostre idee per creare prodotti innovativi.

Esegui pod serverless con Amazon EKS e AWS Fargate

Amazon Web Services

Ora puoi utilizzare Amazon Elastic Kubernetes Service (EKS) per eseguire pod Kubernetes su AWS Fargate, il motore di elaborazione serverless creato per container su AWS. Questo rende più semplice che mai costruire ed eseguire le tue applicazioni Kubernetes nel cloud AWS.In questa sessione presenteremo le caratteristiche principali del servizio e come distribuire la tua applicazione in pochi passaggi

Costruire Applicazioni Moderne con AWS

Amazon Web Services

Vent'anni fa Amazon ha attraversato una trasformazione radicale con l'obiettivo di aumentare il ritmo dell'innovazione. In questo periodo abbiamo imparato come cambiare il nostro approccio allo sviluppo delle applicazioni ci ha permesso di aumentare notevolmente l'agilità, la velocità di rilascio e, in definitiva, ci ha consentito di creare applicazioni più affidabili e scalabili. In questa sessione illustreremo come definiamo le applicazioni moderne e come la creazione di app moderne influisce non solo sull'architettura dell'applicazione, ma sulla struttura organizzativa, sulle pipeline di rilascio dello sviluppo e persino sul modello operativo. Descriveremo anche approcci comuni alla modernizzazione, compreso l'approccio utilizzato dalla stessa Amazon.com.

Come spendere fino al 90% in meno con i container e le istanze spot

Amazon Web Services

L’utilizzo dei container è in continua crescita. Se correttamente disegnate, le applicazioni basate su Container sono molto spesso stateless e flessibili. I servizi AWS ECS, EKS e Kubernetes su EC2 possono sfruttare le istanze Spot, portando ad un risparmio medio del 70% rispetto alle istanze On Demand. In questa sessione scopriremo insieme quali sono le caratteristiche delle istanze Spot e come possono essere utilizzate facilmente su AWS. Impareremo inoltre come Spreaker sfrutta le istanze spot per eseguire applicazioni di diverso tipo, in produzione, ad una frazione del costo on-demand!

Open banking as a service

Amazon Web Services

In recent months, many customers have been asking us the question – how to monetise Open APIs, simplify Fintech integrations and accelerate adoption of various Open Banking business models. Therefore, AWS and FinConecta would like to invite you to Open Finance marketplace presentation on October 20th. Event Agenda : Open banking so far (short recap) • PSD2, OB UK, OB Australia, OB LATAM, OB Israel Intro to Open Finance marketplace • Scope • Features • Tech overview and Demo The role of the Cloud The Future of APIs • Complying with regulation • Monetizing data / APIs • Business models • Time to market One platform for all: a Strategic approach Q&A

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

Amazon Web Services

Per creare valore e costruire una propria offerta differenziante e riconoscibile, le startup di successo sanno come combinare tecnologie consolidate con componenti innovativi creati ad hoc. AWS fornisce servizi pronti all'utilizzo e, allo stesso tempo, permette di personalizzare e creare gli elementi differenzianti della propria offerta. Concentrandoci sulle tecnologie di Machine Learning, vedremo come selezionare i servizi di intelligenza artificiale offerti da AWS e, anche attraverso una demo, come costruire modelli di Machine Learning personalizzati utilizzando SageMaker Studio.

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

Amazon Web Services

Con l'approccio tradizionale al mondo IT per molti anni è stato difficile implementare tecniche di DevOps, che finora spesso hanno previsto attività manuali portando di tanto in tanto a dei downtime degli applicativi interrompendo l'operatività dell'utente. Con l'avvento del cloud, le tecniche di DevOps sono ormai a portata di tutti a basso costo per qualsiasi genere di workload, garantendo maggiore affidabilità del sistema e risultando in dei significativi miglioramenti della business continuity. AWS mette a disposizione AWS OpsWork come strumento di Configuration Management che mira ad automatizzare e semplificare la gestione e i deployment delle istanze EC2 per mezzo di workload Chef e Puppet. Scopri come sfruttare AWS OpsWork a garanzia e affidabilità del tuo applicativo installato su Instanze EC2.

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Amazon Web Services

Vuoi conoscere le opzioni per eseguire Microsoft Active Directory su AWS? Quando si spostano carichi di lavoro Microsoft in AWS, è importante considerare come distribuire Microsoft Active Directory per supportare la gestione, l'autenticazione e l'autorizzazione dei criteri di gruppo. In questa sessione, discuteremo le opzioni per la distribuzione di Microsoft Active Directory su AWS, incluso AWS Directory Service per Microsoft Active Directory e la distribuzione di Active Directory su Windows su Amazon Elastic Compute Cloud (Amazon EC2). Trattiamo argomenti quali l'integrazione del tuo ambiente Microsoft Active Directory locale nel cloud e l'utilizzo di applicazioni SaaS, come Office 365, con AWS Single Sign-On.

Computer Vision con AWS

Amazon Web Services

Database Oracle e VMware Cloud on AWS i miti da sfatare

Amazon Web Services

Amazon Web Services e VMware organizzano un evento virtuale gratuito il prossimo mercoledì 14 Ottobre dalle 12:00 alle 13:00 dedicato a VMware Cloud ™ on AWS, il servizio on demand che consente di eseguire applicazioni in ambienti cloud basati su VMware vSphere® e di accedere ad una vasta gamma di servizi AWS, sfruttando a pieno le potenzialità del cloud AWS e tutelando gli investimenti VMware esistenti. Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi. La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali.

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

Amazon Web Services

Molte aziende oggi, costruiscono applicazioni con funzionalità di tipo ledger ad esempio per verificare lo storico di accrediti o addebiti nelle transazioni bancarie o ancora per tenere traccia del flusso supply chain dei propri prodotti. Alla base di queste soluzioni ci sono i database ledger che permettono di avere un log delle transazioni trasparente, immutabile e crittograficamente verificabile, ma sono strumenti complessi e onerosi da gestire. Amazon QLDB elimina la necessità di costruire sistemi personalizzati e complessi fornendo un database ledger serverless completamente gestito. In questa sessione scopriremo come realizzare un'applicazione serverless completa che utilizzi le funzionalità di QLDB.

API moderne real-time per applicazioni mobili e web

Amazon Web Services

Con l’ascesa delle architetture di microservizi e delle ricche applicazioni mobili e Web, le API sono più importanti che mai per offrire agli utenti finali una user experience eccezionale. In questa sessione impareremo come affrontare le moderne sfide di progettazione delle API con GraphQL, un linguaggio di query API open source utilizzato da Facebook, Amazon e altro e come utilizzare AWS AppSync, un servizio GraphQL serverless gestito su AWS. Approfondiremo diversi scenari, comprendendo come AppSync può aiutare a risolvere questi casi d’uso creando API moderne con funzionalità di aggiornamento dati in tempo reale e offline. Inoltre, impareremo come Sky Italia utilizza AWS AppSync per fornire aggiornamenti sportivi in tempo reale agli utenti del proprio portale web.

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Amazon Web Services

Molte organizzazioni sfruttano i vantaggi del cloud migrando i propri carichi di lavoro Oracle e assicurandosi notevoli vantaggi in termini di agilità ed efficienza dei costi. La migrazione di questi carichi di lavoro, può creare complessità durante la modernizzazione e il refactoring delle applicazioni e a questo si possono aggiungere rischi di prestazione che possono essere introdotti quando si spostano le applicazioni dai data center locali. In queste slide, gli esperti AWS e VMware presentano semplici e pratici accorgimenti per facilitare e semplificare la migrazione dei carichi di lavoro Oracle accelerando la trasformazione verso il cloud, approfondiranno l’architettura e dimostreranno come sfruttare a pieno le potenzialità di VMware Cloud ™ on AWS.

Tools for building your MVP on AWSAmazon Web Services

How to Build a Winning Pitch DeckAmazon Web Services

Building a web application without serversAmazon Web Services

Fundraising EssentialsAmazon Web Services

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...Amazon Web Services

Introduzione a Amazon Elastic Container Service

Amazon Web Services

Amazon Elastic Container Service (Amazon ECS) è un servizio di gestione dei container altamente scalabile, che semplifica la gestione dei contenitori Docker attraverso un layer di orchestrazione per il controllo del deployment e del relativo lifecycle. In questa sessione presenteremo le principali caratteristiche del servizio, le architetture di riferimento per i differenti carichi di lavoro e i semplici passi necessari per poter velocemente migrare uno o più dei tuo container.

More from Amazon Web Services (20)

Come costruire servizi di Forecasting sfruttando algoritmi di ML e deep learn...

Big Data per le Startup: come creare applicazioni Big Data in modalità Server...

Esegui pod serverless con Amazon EKS e AWS Fargate

Costruire Applicazioni Moderne con AWS

Come spendere fino al 90% in meno con i container e le istanze spot

Open banking as a service

Rendi unica l’offerta della tua startup sul mercato con i servizi Machine Lea...

OpsWorks Configuration Management: automatizza la gestione e i deployment del...

Microsoft Active Directory su AWS per supportare i tuoi Windows Workloads

Computer Vision con AWS

Database Oracle e VMware Cloud on AWS i miti da sfatare

Crea la tua prima serverless ledger-based app con QLDB e NodeJS

API moderne real-time per applicazioni mobili e web

Database Oracle e VMware Cloud™ on AWS: i miti da sfatare

Tools for building your MVP on AWS

How to Build a Winning Pitch Deck

Building a web application without servers

Fundraising Essentials

AWS_HK_StartupDay_Building Interactive websites while automating for efficien...

Introduzione a Amazon Elastic Container Service

Recently uploaded

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...

Sri Ambati

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

Ramesh Iyer

In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

Product School

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

FIDO Alliance

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

UiPathCommunity

💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™: See how to accelerate model training and optimize model performance with active learning Learn about the latest enhancements to out-of-the-box document processing – with little to no training required Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath. Speakers: 👨‍🏫 Andras Palfi, Senior Product Manager, UiPath 👩‍🏫 Lenka Dulovicova, Product Program Manager, UiPath

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

Albert Hoitingh

JMeter webinar - integration with InfluxDB and Grafana

RTTS

Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application. In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics. Length: 30 minutes Session Overview ------------------------------------------- During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana: - What out-of-the-box solutions are available for real-time monitoring JMeter tests? - What are the benefits of integrating InfluxDB and Grafana into the load testing stack? - Which features are provided by Grafana? - Demonstration of InfluxDB and Grafana using a practice web application To view the webinar recording, go to: https://www.rttsweb.com/jmeter-integration-webinar

Connector Corner: Automate dynamic content and events by pushing a button

DianaGray10

Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to: Create a campaign using Mailchimp with merge tags/fields Send an interactive Slack channel message (using buttons) Have the message received by managers and peers along with a test email for review But there’s more: In a second workflow supporting the same use case, you’ll see: Your campaign sent to target colleagues for approval If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team But—if the “Reject” button is pushed, colleagues will be alerted via Slack message Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors. And... Speakers: Akshay Agnihotri, Product Manager Charlie Greenberg, Host

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Jeffrey Haguewood

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams. Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Epistemic Interaction - tuning interfaces to provide information for AI support

Alan Dix

Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024 https://alandix.com/academic/papers/synergy2024-epistemic/ As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

Product School

UiPath Test Automation using UiPath Test Suite series, part 4

DianaGray10

Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap. The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies. Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques What will you get from this session? 1. Insights into SAP testing best practices 2. Heatmap utilization for testing 3. Optimization of testing processes 4. Demo Topics covered: Execution from the test manager Orchestrator execution result Defect reporting SAP heatmap example with demo Speaker: Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP

Knowledge engineering: from people to machines and back

Elena Simperl

From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...

Product School

Recently uploaded (20)

GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...

GraphRAG is All You need? LLM & Knowledge Graph

UiPath Test Automation using UiPath Test Suite series, part 3

FIDO Alliance Osaka Seminar: Overview.pdf

Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

FIDO Alliance Osaka Seminar: The WebAuthn API and Discoverable Credentials.pdf

The Art of the Pitch: WordPress Relationships and Sales

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

JMeter webinar - integration with InfluxDB and Grafana

Connector Corner: Automate dynamic content and events by pushing a button

Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...

Epistemic Interaction - tuning interfaces to provide information for AI support

Essentials of Automations: Optimizing FME Workflows with Parameters

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

UiPath Test Automation using UiPath Test Suite series, part 4

Knowledge engineering: from people to machines and back

From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...

Using Security to Build with Confidence in AWS - Trend Micro

1. Using Security To Build With Confidence In AWS Sasha Pavlovic Director, Cloud and Datacenter Security | APAC

2. The Story More at aws.trendmicro.com 2012 re:Invent SPR203 : Cloud Security is a Shared Responsibility http://bit.ly/2012-spr203 2013 re:Invent SEC208: How to Meet Strict Security & Compliance Requirements in the Cloud http://bit.ly/2013-sec208 SEC307: How Trend Micro Build their Enterprise Security Offering on AWS http://bit.ly/2013-sec307 2014 re:Invent SEC313: Updating Security Operations for the Cloud http://bit.ly/2014-sec313 SEC314: Customer Perspectives on Implementing Security Controls with AWS http://bit.ly/2014-sec314

3. Shared Responsibility Model AWS Physical Infrastructure Network Virtualisation You Operating System Applications Data Service Configuration More at aws.amazon.com/security

4. Shared Responsibility Model AWS Physical Infrastructure Network Virtualisation You Operating System Applications Data Service Configuration More at aws.amazon.com/security

5. Vulnerability Respond Repair

7. by Andreas Lindh (@addelindh)

8. bash is a common command line interpreter

9. a:() { b; } | attack 10 | 10 vulnerability. Widespread & easy to exploit

10. Shellshock Impact The image cannot be displayed. Your computer may not have enough memory to open the image, or the image may have been corrupted. Restart your computer, and then open the file again. If the red x still appears, you may have to delete the image and then insert it again.

11. 1989 Fantastic summary by David A. Wheeler at http://www.dwheeler.com/essays/shellshock.html#timeline

12. "MicroTAC" by Redrum0486 at English Wikipedia 12.3oz

13. Time Since Last Event Event Action Action Timeline 1989-‐08-‐05 8:32 Added to codebase 27 days, 10:20:00 Released to public 9141 days, 21:18:35 Ini?al report React Clock starts 1 day, 22:19:13 More details React 2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25 5 days, 9:16:35 Limited disclosure :: CVE-‐2014-‐6271 React 2 days, 4:37:25 More details React 3:44:00 More details React 0:27:51 Public disclosure React 0:36:30 More details React

14. Important Shellshock Events Time Since Last Event Event Action Action Timeline 1989-‐08-‐05 8:32 Added to codebase 27 days, 10:20:00 Released to public 9141 days, 21:18:35 Ini?al report React Clock starts 2 days, 7:30:12 Official patch :: CVE-2014-6271 Patch 4 days, 5:49:25 3:29:09 Official patch :: CVE-2014-7169 Patch 9 days, 19:17:00 3:15:00 Oﬃcial patch :: CVE-‐2014-‐7186, CVE-‐2014-‐7187 Patch 4 days, 17:30:00 1 day, 11:55:00 Oﬃcial patch :: CVE-‐2014-‐6277 Patch 1 day, 11:55:00

16. aws.amazon.com/architecture : Web application hosting

17. aws.amazon.com/architecture : Web application hosting

18. TCP : 443TCP : 443 TCP : 4433TCP : 4433 Primary workflow for our deployment

19. AWS VPC Review

20. AWS VPC Checklist Review IAM roles Security groups Network segmentation Network access control lists (NACL) More in the Auditing Security Checklist for Use of AWS, media.amazonwebservices.com/AWS_Auditing_Security_Checklist.pdf

21. TCP : 443TCP : 443 TCP : 4433TCP : 4433 Primary workflow for our deployment

22. HTTPSTPS Intrusion prevention can look at each packet and then take action depending on what it finds

23. aws.amazon.com/architecture : Web application hosting

24. Intrusion Prevention in Action

25. Review All instances covered Workload appropriate rules Centrally managed Security controls must scale out automatically with the deployment

27. aws.amazon.com/architecture : Web application hosting

28. All instances deployment from task-specific AMI TCP : 443TCP : 443 TCP : 4433TCP : 4433

29. Workflow should be completely automated Instantiate DestroyConfigure AMI Creation Workflow Bake Instantiate Test

30. AMI Creation

31. aws.amazon.com/architecture : Web application hosting

32. Instances tend to drift from the known good state, monitoring key files & processes is important AMI Instance AlertIntegrity Monitoring

33. Integrity Monitoring

34. Keys Respond Review configuration Apply intrusion prevention Repair Patch vulnerability in new AMI Leverage integrity monitoring

35. Keys Automation

36. aws.trendmicro.com KUALA LUMPUR

Using Security to Build with Confidence in AWS - Trend Micro

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (20)

Similar to Using Security to Build with Confidence in AWS - Trend Micro

Similar to Using Security to Build with Confidence in AWS - Trend Micro (20)

More from Amazon Web Services

More from Amazon Web Services (20)

Recently uploaded

Recently uploaded (20)

Using Security to Build with Confidence in AWS - Trend Micro