"The Guardians program identifies and develops security experts within engineering teams across AWS, enabling these teams to use Amazon Security more effectively"
https://aws.amazon.com/blogs/security/aws-security-profile-philip-winstanley-security-engineering
PrivatBank case study:
Introducing New Categories of AWS Security Competency Partners
https://aws.amazon.com/blogs/apn/introducing-new-categories-of-aws-security-competency-partners/
https://aws.amazon.com/blogs/apn/introducing-aws-level-1-mssp-competency-specialization-categories/
Announcing AWS Marketplace Vendor Insights to help streamline vendor risk assessments (Preview)
https://aws.amazon.com/marketplace/features/vendor-insights
Cloud Audit Academy
https://aws.amazon.com/compliance/auditor-learning-path/
Threat Modeling Workshop
https://catalog.workshops.aws/threatmodel/en-US
Hybrid post-quantum key agreement
Automated reasoning
Provable Security
https://aws.amazon.com/security/provable-security/
Permission lifecycle:
Call to action:
AWS (IAM) Roles Anywhere Management
https://docs.aws.amazon.com/rolesanywhere/latest/userguide/introduction.html
Amazon Detective Supports Kubernetes Workloads on Amazon EKS for Security Investigations
Malware protection now a feature of Amazon GuardDuty
https://aws.amazon.com/about-aws/whats-new/2022/07/malware-protection-feature-amazon-guardduty/
AWS Security Hub now receives Amazon GuardDuty Malware Protection findings
AWS announces AWS Wickr (Preview)
https://aws.amazon.com/about-aws/whats-new/2022/07/aws-announces-aws-wickr-preview/
Link to the entire session in YouTube:
https://www.youtube.com/watch?v=PPunA7tPMyk
About the Author
Eyal Estrin is a cloud and information security architect, the owner of the blog Security & Cloud 24/7 and the author of the book Cloud Security Handbook, with more than 20 years in the IT industry.
You can connect with him on Twitter and LinkedIn.
Latest comments (4)
Hope you had a great time at the conference, @eyalestrin! I personally most enjoyed sessions where teams were sharing something they built. I attended one on how Bristol Myers Squibb built an internal self-service catalog and one with Athenahealth where they discussed their journey implementing their Firewall. Hoping to see the recording available for all sessions soon!
Thank you for sharing @eyalestrin - I also gave you a shout out in our Conference Round-up post!
@eyalestrin、thank you for posting this.
I think the way amazon is pushing towards information security, AWS Certified Security - Specialty won't be an easy task. After all its security and flexibility which differentiates cloud from on premises
Thanks for posting @eyalestrin! I know The Ops Community's own @patrick_londa was in attendance this week.
Did anyone else attend AWS re:Inforce in Boston this week? Share your experiences with us in the comments. I'm sure many other community members are curious!