AWS Village

NOTE: Ce village est bilingue! - Des parties sont en anglais seulement

aws


Saturday

11:00am

  • Title: Threat detection on AWS
  • By Sol Kavanagh – Principal Solutions Architect
  • Format: Presentation
  • Language: English, questions in French possible
  • Duration: 60 mins

Abstract:

When moving to the cloud, understanding your security posture and analyzing your security ecosystem to identify any malicious activity that could compromise the network is critical. Join this presentation to have a technical overview of the solutions, services, and methods used to detect threats in an AWS environment and then what mitigation can be enacted to properly neutralize those threats.

Learn how AWS Security Hub, Amazon GuardDuty, Amazon Macie, Amazon Inspector, and AWS Config in tandem provide continuous visibility, compliance, and detection of threats for AWS accounts and workloads.


1:00pm

  • Title: “Who is this system?” - Methods for Machine-to-Machine Authentication
  • By Chris Mercer - Security Solutions Architect, Identity and Jeremy Ware - Security Solutions Architect, Identity
  • Format: Workshop (this will require participants to have their own laptop, AWS accounts will be provided)
  • Language: English
  • Duration: 90 mins

Abstract:

In this hands-on workshop, you will learn the pros and cons of several methods of machine-to-machine authentication. Examine how to implement and use Amazon Cognito, AWS Identity and Access Management (IAM), and Amazon API Gateway to authenticate services to each other with various types of keys and certificates. Join us to gain a solid understanding of the recommended practices and available options when performing machine-to-machine authentication on AWS.


Sunday

10:30am

  • Title: Prepare for Ransomware
  • By Colin Igbokwe - Senior Security Solutions Architect
  • Format: Demonstration
  • Language: English
  • Duration: 75 mins

Abstract:

Learn how to protect your organization from ransomware threats. Join this session to see how you can use AWS Security services to mitigate, alert, and defend against ransomware attacks.

You will learn the following; How to integrate Amazon GuardDuty with other AWS services such as AWS Network Firewall, Route 53 Resolver DNS Firewall, Systems Manager Incident Manager (your incident response plan) to protect against and alert on suspicious activities. How to use Microsoft Windows tools to defend against ransomware and provide visibility into suspicious activities on Windows servers. How to use AWS Network Firewall and Route 53 Resolver DNS Firewall to reduce the risk and defend against ransomware attacks. How to provide visibility via Amazon Cloudwatch Logs and Remediate against persistence actions on Windows servers


1:00pm

  • Title: How to consume AWS services from non-AWS workload without hardcoding long lived static credentials?
  • By Jeff Lombardo - Senior Security Solutions Architect and Alvar Torres - Senior Security Solutions Architect
  • Format: Demonstration
  • Language: French and English
  • Duration: 120 mins

Abstract:

If your workload already lives inside the AWS realm, there is a high chance that some temporary AWS credentials have been securely distributed to it to perform the tasks needed. But what happen when your workload is this stranger in strange land?

Through this session, we will reinstate the fundamentals of the Identity and Access Management in AWS, how we improved the situation over the years, and what we can solve now thanks to AWS IAM Roles Anywhere. With a small logic living outside AWS, we will also demonstrate how we can move from a no permissions state to a securely constrained with the help of a chain of trust established with a PKI system.