"The Guardians program identifies and develops security experts within engineering teams across AWS, enabling these teams to use Amazon Security more effectively"
https://aws.amazon.com/blogs/security/aws-security-profile-philip-winstanley-security-engineering
PrivatBank case study:
Introducing New Categories of AWS Security Competency Partners
https://aws.amazon.com/blogs/apn/introducing-new-categories-of-aws-security-competency-partners/
https://aws.amazon.com/blogs/apn/introducing-aws-level-1-mssp-competency-specialization-categories/
Announcing AWS Marketplace Vendor Insights to help streamline vendor risk assessments (Preview)
https://aws.amazon.com/marketplace/features/vendor-insights
Cloud Audit Academy
https://aws.amazon.com/compliance/auditor-learning-path/
Threat Modeling Workshop
https://catalog.workshops.aws/threatmodel/en-US
Hybrid post-quantum key agreement
Automated reasoning
Provable Security
https://aws.amazon.com/security/provable-security/
Permission lifecycle:
Call to action:
AWS (IAM) Roles Anywhere Management
https://docs.aws.amazon.com/rolesanywhere/latest/userguide/introduction.html
Amazon Detective Supports Kubernetes Workloads on Amazon EKS for Security Investigations
Malware protection now a feature of Amazon GuardDuty
https://aws.amazon.com/about-aws/whats-new/2022/07/malware-protection-feature-amazon-guardduty/
AWS Security Hub now receives Amazon GuardDuty Malware Protection findings
AWS announces AWS Wickr (Preview)
https://aws.amazon.com/about-aws/whats-new/2022/07/aws-announces-aws-wickr-preview/
Link to the entire session in YouTube:
https://www.youtube.com/watch?v=PPunA7tPMyk
About the Author
Eyal Estrin is a cloud and information security architect, the owner of the blog Security & Cloud 24/7 and the author of the book Cloud Security Handbook, with more than 20 years in the IT industry.
You can connect with him on Twitter and LinkedIn.
Top comments (4)
@eyalestrin、thank you for posting this.
I think the way amazon is pushing towards information security, AWS Certified Security - Specialty won't be an easy task. After all its security and flexibility which differentiates cloud from on premises
Thanks for posting @eyalestrin! I know The Ops Community's own @patrick_londa was in attendance this week.
Did anyone else attend AWS re:Inforce in Boston this week? Share your experiences with us in the comments. I'm sure many other community members are curious!
Thank you for sharing @eyalestrin - I also gave you a shout out in our Conference Round-up post!
Hope you had a great time at the conference, @eyalestrin! I personally most enjoyed sessions where teams were sharing something they built. I attended one on how Bristol Myers Squibb built an internal self-service catalog and one with Athenahealth where they discussed their journey implementing their Firewall. Hoping to see the recording available for all sessions soon!