The Ops Community ⚙️

Cover image for AWS re:Inforce 2022 keynote highlights
Eyal Estrin
Eyal Estrin

Posted on • Originally published at eyal-estrin.Medium

AWS re:Inforce 2022 keynote highlights

Image description

"The Guardians program identifies and develops security experts within engineering teams across AWS, enabling these teams to use Amazon Security more effectively"

https://aws.amazon.com/blogs/security/aws-security-profile-philip-winstanley-security-engineering

Image description

PrivatBank case study:

https://www.aboutamazon.com/news/aws/safeguarding-ukraines-data-to-preserve-its-present-and-build-its-future

Image description

Image description

Image description

Image description

Image description

Introducing New Categories of AWS Security Competency Partners

https://aws.amazon.com/blogs/apn/introducing-new-categories-of-aws-security-competency-partners/

https://aws.amazon.com/blogs/apn/introducing-aws-level-1-mssp-competency-specialization-categories/

Image description

Announcing AWS Marketplace Vendor Insights to help streamline vendor risk assessments (Preview)

https://aws.amazon.com/about-aws/whats-new/2022/07/aws-marketplace-vendor-insights-streamline-vendor-risk-assessments-preview/

https://aws.amazon.com/marketplace/features/vendor-insights

Image description

Cloud Audit Academy

https://aws.amazon.com/compliance/auditor-learning-path/

Image description

Threat Modeling Workshop

https://catalog.workshops.aws/threatmodel/en-US

Image description

Hybrid post-quantum key agreement

https://aws.amazon.com/blogs/security/how-to-tune-tls-for-hybrid-post-quantum-cryptography-with-kyber/

https://aws.amazon.com/blogs/security/enable-post-quantum-key-exchange-in-quic-with-the-s2n-quic-library/

Image description

Image description

Automated reasoning

https://www.amazon.science/latest-news/how-awss-automated-reasoning-group-helps-make-aws-and-other-amazon-products-more-secure

Image description

Image description

Provable Security

https://aws.amazon.com/security/provable-security/

Image description

Permission lifecycle:

Image description

Call to action:

Image description

Image description

AWS (IAM) Roles Anywhere Management

https://aws.amazon.com/about-aws/whats-new/2022/07/aws-identity-access-management-iam-roles-anywhere-workloads-outside-aws/

https://docs.aws.amazon.com/rolesanywhere/latest/userguide/introduction.html

Image description

Image description

Amazon Detective Supports Kubernetes Workloads on Amazon EKS for Security Investigations

https://aws.amazon.com/blogs/aws/amazon-detective-supports-kubernetes-workloads-on-amazon-eks-for-security-investigations/

Image description

Malware protection now a feature of Amazon GuardDuty

https://aws.amazon.com/about-aws/whats-new/2022/07/malware-protection-feature-amazon-guardduty/

Image description

AWS Security Hub now receives Amazon GuardDuty Malware Protection findings

https://aws.amazon.com/about-aws/whats-new/2022/07/aws-security-hub-receives-amazon-guardduty-malware-protection-findings/

Image description

AWS announces AWS Wickr (Preview)

https://aws.amazon.com/about-aws/whats-new/2022/07/aws-announces-aws-wickr-preview/

Image description

Link to the entire session in YouTube:

https://www.youtube.com/watch?v=PPunA7tPMyk

About the Author
Eyal Estrin is a cloud and information security architect, the owner of the blog Security & Cloud 24/7 and the author of the book Cloud Security Handbook, with more than 20 years in the IT industry.
You can connect with him on Twitter and LinkedIn.

Top comments (4)

Collapse
 
jatin profile image
Jatin Mehrotra

@eyalestrin、thank you for posting this.

I think the way amazon is pushing towards information security, AWS Certified Security - Specialty won't be an easy task. After all its security and flexibility which differentiates cloud from on premises

Collapse
 
johnson_brad profile image
Brad Johnson • Edited

Thanks for posting @eyalestrin! I know The Ops Community's own @patrick_londa was in attendance this week.

Did anyone else attend AWS re:Inforce in Boston this week? Share your experiences with us in the comments. I'm sure many other community members are curious!

Collapse
 
ellativity profile image
Ella (she/her/elle)

Thank you for sharing @eyalestrin - I also gave you a shout out in our Conference Round-up post!

Collapse
 
patrick_londa profile image
Patrick Londa

Hope you had a great time at the conference, @eyalestrin! I personally most enjoyed sessions where teams were sharing something they built. I attended one on how Bristol Myers Squibb built an internal self-service catalog and one with Athenahealth where they discussed their journey implementing their Firewall. Hoping to see the recording available for all sessions soon!