Join us at the Rocky Mountain Hackfest, Live Online!! Virtual summit and courses take place June 4-13.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right.Once you register, you can download the presentaion slides below.

How to Design a Least Privilege Architecture in AWS

  • Wednesday, April 29, 2020 at 10:30 AM EDT (2020-04-29 14:30:00 UTC)
  • Dave Shackleford, Sagar Khasnis

Sponsor

  • AWS Marketplace

You can now attend the webcast using your mobile device!

  

Overview

Implementing a least privilege architecture can reduce risk and minimize disruptions by allowing only the minimum required authority to perform a duty or task. Adding network micro-segmentation also restricts east-west movement to reduce the number of vulnerable pathways to applications. When combined, these methods create a granular security environment that provides strong attack resistance.

In this webinar, SANS and AWS Marketplace will present examples of how to set up a least privilege stack, covering such key issues as where to start and what to prioritize. Additionally, they will present real-world use cases of least privilege stacks and effective micro-segmentation methods that have been deployed in Amazon Web Services (AWS).

Register today to be among the first to receive the associated whitepaper written by SANS analyst Dave Shackleford.

Attendees will learn how to:

  • Leverage the three pillars of least privilege as a control stack to ensure security in their AWS environment
  • Map user and service relationships to use identity and access management (IAM) as an isolation and segmentation technique
  • Apply micro-segmentation to set up multiple security zones and implement robust security controls
  • Enhance security posture by locking down the control plane, delivering continuous monitoring, and ensuring platform-as-a-service (PaaS) and container workload protection and monitoring

Speaker Bios

Dave Shackleford

Dave Shackleford, a SANS analyst, instructor, course author, GIAC technical director and member of the board of directors for the SANS Technology Institute, is the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering. A VMware vExpert, Dave has extensive experience designing and configuring secure virtualized infrastructures. He previously worked as chief security officer for Configuresoft and CTO for the Center for Internet Security. Dave currently helps lead the Atlanta chapter of the Cloud Security Alliance.


Sagar Khasnis

Sagar Khasnis is a Partner Solutions Architect focusing on AWS Marketplace and Service Catalog. He has vast experience in helping enterprise customers in various technical roles. He is a technologist who is passionate about building innovative solutions using AWS services to help customers achieve their business objectives.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.