How to Build a Threat Detection Strategy in AWS

  • Webcast Aired Thursday, September 12, 2019 at 1:00 pm EDT (2019-09-12 17:00:00 UTC)
  • Speakers: David Aiken, David Szili

One of the major concerns security teams have when their organization migrates business to a cloud environment is losing visibility into their systems and threat detection capabilities. Traditional network- and host-based monitoring can be adapted to support intrusion detection in the cloud. In this recorded webcast, SANS Analyst David Szili focuses on the keys to detecting threats in the AWS environment and presents use cases to demonstrate best practices.

Attendees at this webcast will learn:

  • How organizations can ensure intrusion detection and prevention and enhance visibility for threat detection in AWS using tools such as Amazon VPC Traffic Mirroring
  • What data sources are available for continuous monitoring
  • Which AWS-native tools are most useful for event management and analysis
  • How to automate monitoring processes

Register today to be among the first to receive the associated whitepaper written by SANS analyst and forensics expert David Szili.