SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals
SEC595Cyber Defense
SANS Community Benefits
Connect, learn, and share with other cybersecurity professionals
Search results
Filter results
Search results
- Whitepaper
Defending Infrastructure as Code in GitHub Enterprise
As infrastructure workloads have changed, cloud workflows have been adopted, and elastic...
- Webinar
SANS Workshop – Building an Azure Pentest Lab for Red Teams
In this SANS Workshop, you will learn how to use Infrastructure as Code and open-source tools to automatically create an Azure Active Directory security lab which can be used for your own security simulations and use cases. After automatically creating Azure AD users, Applications, and RBAC role assignments, participants will have hands-on exercises to perform reconnaissance and a specific attack pathway that abuses mis-configured roles and permissions.
- Webinar
Navigating the Serverless, Containerized, and IaC Vulnerability Management Revolution
They promised it would be a breeze! Serverless functions, containers, and infrastructure as code were supposed to simplify vulnerability management. But hold onto your seats, because we'll dive into why these technologies demanding a whole new set of skills, tools, and a mindset shift for anyone in the game. Are you ready to shake up your vulnerability management game? Join us as we discover the must-have skills and attitude adjustments for staying on top.
- Webinar
SANS Cloud Security - San Francisco 2023: Keynote - The Cloud Security Identity Crisis: Skills to Keep Up In The Cloud
The increasing reliance on cloud computing has driven the need for efficient and secure IT environments, necessitating the development of robust engineering skills across various domains. This keynote speech will explore the world of cloud investigations, focusing on the critical intersection of data engineering, infrastructure as code (IaC), and Continuous Integration/Continuous Deployment (CI/CD) pipelines. Attendees will learn about the latest trends, best practices, and real-world applications demonstrating how these engineering disciplines can significantly enhance cloud security, performance, and scalability. By the end of the session, participants will have gained valuable insights and practical strategies to help their organizations adapt and excel in the rapidly evolving cloud-centric landscape.Learning Objectives: Understand the fundamentals of cloud investigations and their importance in ensuring secure and efficient IT environments in the cloud.Gain insights into data engineering techniques, including data collection, storage, processing, and analysis, and learn how they contribute to effective cloud investigations.Explore the principles of infrastructure as code (IaC), its benefits in managing and provisioning cloud resources, and how it supports cloud investigations by improving security, compliance, and infrastructure management.Examine the role of CI/CD pipelines in promoting rapid and reliable software delivery, and learn how they facilitate cloud investigations by fostering transparency, traceability, and automated testing.Discover emerging trends and best practices for integrating data engineering, infrastructure as code, and CI/CD pipelines in cloud investigations to optimize security and performance.Learn from real-world examples and case studies that demonstrate the successful application of these engineering disciplines in cloud environments.
- Webinar
When the Vibes Lie: Securing IaC in the Age of Prompt Generated Templates
Infrastructure as Code (IaC) gives teams speed, repeatability, and auditability, but only when it’s done securely.
- Summit Presentation
Compromising Pipelines With Evil Terraform
This talk exposes how Terraform modules and providers can be weaponized to compromise CI/CD pipelines and cloud environments. Through real-world attack paths and a Proof-of-Concept “Evil Terraform” provider, it highlights supply chain risks in infrastructure-as-code and offers practical mitigations to secure development workflows.
- Summit Presentation
IaC and GitOps for Resilient Multi-Cloud Security
This session demonstrates how combining Infrastructure as Code and GitOps with tools like Argo CD and Crossplane can enhance multi-cloud security through automated governance and real-time threat response. Attendees will learn to integrate policy-as-code, continuous compliance, and automated drift detection to build resilient, secure cloud architectures.
- Summit Presentation
IaC Meets Reality: Engineering for the Cloud You Actually Have
This talk challenges the idea that Infrastructure as Code alone ensures secure, scalable cloud environments, advocating instead for a hybrid approach that pairs IaC with automated remediation. Attendees will learn how this strategy reduces configuration drift, closes security gaps, and creates a more adaptive, resilient cloud infrastructure.
- Summit Presentation
Infrastructure Attack as Code Using Terraform To Attack Cloud
Infrastructure Attack as Code Using Terraform To Attack Cloud - Bleon Proko
- Summit Presentation
Policy as Code: Strengthening Governance and Security in Cloud Infrastructure
SANS CloudSecNext Summit 2023