How to Design a Least Privilege Architecture in AWS

  • Wednesday, 29 Apr 2020 10:30AM EDT (29 Apr 2020 14:30 UTC)
  • Speakers: Dave Shackleford, Sagar Khasnis

Implementing a least privilege architecture can reduce risk and minimize disruptions by allowing only the minimum required authority to perform a duty or task. Adding network micro-segmentation also restricts east-west movement to reduce the number of vulnerable pathways to applications. When combined, these methods create a granular security environment that provides strong attack resistance.

In this webinar, SANS and AWS Marketplace will present examples of how to set up a least privilege stack, covering such key issues as where to start and what to prioritize. Additionally, they will present real-world use cases of least privilege stacks and effective micro-segmentation methods that have been deployed in Amazon Web Services (AWS).

Register today to be among the first to receive the associated whitepaper written by SANS analyst Dave Shackleford.

Attendees will learn how to:

  • Leverage the three pillars of least privilege as a control stack to ensure security in their AWS environment
  • Map user and service relationships to use identity and access management (IAM) as an isolation and segmentation technique
  • Apply micro-segmentation to set up multiple security zones and implement robust security controls
  • Enhance security posture by locking down the control plane, delivering continuous monitoring, and ensuring platform-as-a-service (PaaS) and container workload protection and monitoring