Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Leoswaldo Macias - Protecting your App in the Cloud

Cc51a96581c0e265b8b3325dcadb6d2c?s=47 DevOpsDays GDL
February 21, 2020
Technology
0
130

Leoswaldo Macias - Protecting your App in the Cloud

DevOps Days GDL 2020 - February 20th

Cc51a96581c0e265b8b3325dcadb6d2c?s=128

DevOpsDays GDL

February 21, 2020
Tweet

More Decks by DevOpsDays GDL

See All by DevOpsDays GDL
Julian Limon - Aligned autonomy: How clarity on outcomes gets us to self-organized teams that win
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
190
Jorge Castro - Building DevOps Ways of Working at large Enterprise through learning, collaboration and Gamification experiences: Continuous WoWs, DevUps and Feedback
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
150
Salvador Elizarraras - Five Ways to Improve Team Performance
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
110
Tommy Adams - Cutting the Cord: Letting Your Remote Team Run Free
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
110
Cameron Motevasselani - Extending Spinnaker for the Enterprise
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
160
Jesus Contreras - Containers y DevTools en AWS
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
140
Liz fong-Jones - Production Excellence
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
170
Mofizur Rahman - Knative: Serverless Computing on Kubernetes
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
130
Ra Acosta - SAFe Journey 5.0
Cc51a96581c0e265b8b3325dcadb6d2c?s=48 devopsdaysgdl
0
110

Other Decks in Technology

See All in Technology
The application of formal methods in Kafka reliability engineering
A3966f193f4bef226a0d3e3c1f728d7f?s=48 line_developers
PRO
0
150
覗いてみよう!現場のスクラムチーム
1f0222f7251c3c48f4a8e5103cc64346?s=48 tkredman
0
1k
Istio入門
72c25016e1baff3eb99a80dfc1e95ca1?s=48 nutslove
15
4.9k
サーバレスECにおける Step Functions の使い方 〜ステートマシン全部見せます!〜
74cec195bfb6cb5165256d88cb7fcf0f?s=48 miu_crescent
0
180
OPENLOGI Company Profile
5c588fdfe782f92fa6b081903edd82bb?s=48 hr01
0
370
miisan's career talk
253f81535853f9fddcadaec9b37dc1e0?s=48 mii3king
0
220
リファインメントは楽しいかね?
F4ea0f5f6211de72f79576d020308de5?s=48 kitamu_mu
1
380
Retca Cloud
7e116e0bb743dee7e0a906f01bd44082?s=48 bau
0
440
Custom GitHub Actions by Java
E68f2e8b47dc1769380a1fa8181df3dd?s=48 kazamori
0
280
現状のFedCMの動作解説と OIDCとの親和性について- OpenID TechNight vol.19
658c29959d8a9fd352afa440a5813137?s=48 ritou
2
450
20220622_FinJAWS_あのときにAWSがあったらこうできた
Feb135945a82ac9c12e91ba5f7e8bce2?s=48 taketakekaho
0
110
Data in Google I/O - IO Extended GDG Seoul
3bd69093dbe39b14603242b96cfbd7c6?s=48 kennethanceyer
0
150

Featured

See All Featured
Testing 201, or: Great Expectations
A9704266587836f7e784235e5073b93e?s=48 jmmastey
21
5.4k
What's in a price? How to price your products and services
Dad095ea7038f89f760419ce475d5d14?s=48 michaelherold
229
9.4k
How to name files
0a4f62e90c976eeb44d33add75cca5af?s=48 jennybc
40
61k
Three Pipe Problems
11c84dff30266b907714802088852677?s=48 jasonvnalue
89
8.7k
The Web Native Designer (August 2011)
0bce06bd06ee7a2c4f5500f25dcf7f18?s=48 paulrobertlloyd
74
1.9k
Atom: Resistance is Futile
7fa6101cd43067653cf4ac6c7ca54305?s=48 akmur
255
20k
Code Reviewing Like a Champion
C7393b7ba7ec9c8890dd77d209fbb3c9?s=48 maltzj
506
37k
Building Adaptive Systems
06f8b41980eb4c577fa40c41d5030c19?s=48 keathley
25
1.1k
Web Components: a chance to create the future
E190023b66e2b8aa73a842b106920c93?s=48 zenorocha
303
40k
The Art of Programming - Codeland 2020
719435d98d452de7ac367c828266cf01?s=48 erikaheidi
32
10k
We Have a Design System, Now What?
95d9f37115fbb0d13135d0f77132f856?s=48 morganepeng
35
3k
How To Stay Up To Date on Web Technology
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
780
250k

Transcript

  1. Protecting your App in the Cloud @LeoswaldoMacias

  2. Misconception

  3. Shared Responsibility Model

  4. “If you have access to change it then it is

    yours, if not, then it’s theirs”

  5. Incident Prevention A process to set instruments/tools/services to avoid possible

    threats or impacts during an attack Incident Response Plan What to do when once we are impacted

  6. Compliance Updates Maintain your instances up to date (OS, Libraries)

    Network Does this need to be public accessible? What ports should I let in? What traffic should go out? Encryption At rest In transit Secret Management Keep your secret data secret

  7. Network: Content Delivery Network CDN Content Delivery Network Your App

    WAF

  8. Network: Web Application Firewalls Firewall Layer 3 and 4 WAF

    Contains Layer 7 attacks by inspecting for: • SQL Injections • XSS • Origin Geographically requests • String appearances • … and more

  9. At least you know How soon or late? What are

    the actions taken?

  10. Incident Response Plan • Preparation • Detection • Containment •

    Investigation • Recovery • Lesson Learn

  11. Preparation Log everything you can (this will also help for

    auditing) • Application Logs • Server Logs • Network Logs (Traces) • Access Logs and more Design the infrastructure to prevent single point of failure

  12. Detection Monitoring and Alerting • Behaviour rules like traffic spikes,

    CPU and Memory consumption • Traffic from countries not served • Sign in failures Page System :(

  13. Containment Use automated processes to isolate any further impact like:

    • Creating Network rules Make sure the impacted surface does not grow

  14. Investigation • Analyze logs and timelines • Check which alarming

    systems triggered • Check Dashboards

  15. Recovery Get your environment to normal state

  16. Lessons Learned Make sure all missings are documented and ARs

    are assigned and tracked

  17. Take Away #1 All applications are subject to exploits

  18. Take Away #2 I’d rather invest more money on security

    checks, tools, automation, than risking customer/company data

  19. Take Away #3 Security is a shared responsibility to be

    carried among all company employees, not only the Security crew

  20. Thanks! @LeoswaldoMacias leoswaldo.mancilla@wizeline.com