Cloud Security: From Infrastructure to Applications
Learn how to leverage security automation in your cloud infrastructure, DevOps pipeline, and applications. Using the open-source Cloud Custodian tool you'll see how AWS CloudTrail, CloudWatch, and Lambda are used to implement automated infrastructure monitoring and remediation. Then you'll see how DevOps security automation and Infrastructure as Code is used to build a Blue/Green deployment infrastructure to quickly patch critical security vulnerabilities. Finally, using the open-source AWS WAF Security Automations project you'll see how it can be automatically deployed via your Jenkins CI/CD pipeline, how the WAF leverages Lambda for automation, and how it automatically blocks critical application vulnerabilities.
- #DevSec #AppSec #DevOps community
- Application Security Engineers
- Info Security professionals (CISO)
- Modern application vendors
Frank Kim, Fellow and former CISO, SANS Institute
Frank is a SANS Fellow and lead for both the SANS Management and SANS Cloud Security curricula, overseeing two dozen SANS courses in the two fastest-growing curricula. Previously, as CISO at the SANS Institute, Frank led the information risk function for the most trusted source of computer security training and certification in the world. Frank is also the author and instructor of popular leadership and cloud security courses and serves as an advisor to emerging security companies, including Wallarm.