Get unparalleled cyber security training from real-world practitioners in Miami. Save $300 today!


To attend this webcast, login to your SANS Account or create your Account.

Scripting Cloud Security Capabilities

  • Tuesday, November 7th, 2017 at 10:30 AM EST (15:30:00 UTC)
  • Kenneth Hartman
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!


ITIL defines a capability as the "ability to carry out an activity" and indicates that capabilities are assets that can be intentionally managed and improved in pursuit of the company's mission. NIST Special Publication 800-53R4 states that a security capability generally results from the selection and implementation of a set of mutually reinforcing security controls. Forward-thinking companies like Google. Microsoft, and Amazon are delivering their cloud services such that they can be consumed by other services via an Application Programming Interface (API). This has given rise to several important concepts such as Software Defined Networking, Orchestration, and Infrastructure as Code. A central theme is that everything that is customized or unique has been reduced so that it can be expressed as version-controlled program code. This allows organizations to encapsulate, inherit, abstract, and reuse their IT capabilities just like other code. Using selected examples from the CIS Critical Security Controls , this presentation will share some concepts, tools and practical experiences of a security engineer using the "capabilities as code" approach to improve the security of his organization's use of Amazon Web Services.

Speaker Bio

Kenneth G. Hartman

Kenneth G. Hartman is the Sr. Staff Security Engineer for the Enterprise Informatics Business Unit at Illumina, Inc. Ken's mission statement is "I help my company earn and maintain the trust of our customers in our products and services." Toward this end, Ken drives a comprehensive program portfolio of technical security initiatives focused on securing customer's genomic data in the AWS Cloud.

Prior to coming to Illumina, Kenneth Hartman was the Security Architect and Senior Product Manager for Cloud Security for SAP Ariba where he led a variety of initiatives focused on application security and end-to-end encryption of Ariba's microservices stack.

For the previous decade, up until July 2011, he helped to build a start-up company called Visonex into a profitable, nation-wide dialysis-specific electronic medical record using a software-as-a-service (SaaS) business model. In addition to managing the inception and delivery of multiple product innovations, Ken was responsible for all aspects of assuring the security and privacy of both the internal IT systems and the company's SaaS offerings.

Kenneth G. Hartman is a candidate for the Master of Science degree in Information Security Engineering from the SANS Technology Institute Information Security Engineering program and holds a BS Electrical Engineering from Michigan Technological University. Ken has earned the CISSP, as well as multiple GIAC security certifications.

The SANS Technology Institute is the only graduate program that combines SANS technical training, recognized as the industry's best, with leadership and management curriculum specifically developed for the unique needs of aspiring leaders. Learn more at

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.