NRIネットコム TECH AND DESIGN STUDY #72 で発表した資料です。
https://nrinetcom.connpass.com/event/363582/
<資料内に載せたリンク>
■AWS re:Inforce 関連
〇AWS re:Inforce 2025 で 3 つの主要セキュリティ機能を発表、お客様のセキュリティ対策の簡素化とスケーリングを支援
https://aws.amazon.com/jp/blogs/news/aws-new-security-features-reinforce/
〇AWS re:Inforce 2025 のまとめ: 主な発表
https://aws.amazon.com/jp/blogs/news/aws-reinforce-roundup-2025-top-announcements/
・Pickup対象
●AWS IAM Access Analyzer
〇Verify internal access to critical AWS resources with new IAM Access Analyzer capabilities
https://aws.amazon.com/jp/blogs/aws/verify-internal-access-to-critical-aws-resources-with-new-iam-access-analyzer-capabilities/
〇AWSマルチアカウント管理の考え方!(40分編)p.36
https://speakerdeck.com/htan/awsmarutiakauntoguan-li-nokao-efang-40fen-bian-marutiakauntoguan-li-dehuo-yong-dekiruawssabisu?slide=36
〇Pricing Calculator:AWS IAM Access Analyzer
https://calculator.aws/#/createCalculator/IAMAccessAnalyzer
●AWS Shield
〇New AWS Shield feature discovers network security issues before they can be exploited (Preview)
https://aws.amazon.com/jp/blogs/aws/new-aws-shield-feature-discovers-network-security-issues-before-they-can-be-exploited-preview/
●AWS WAF
〇Introducing the new console experience for AWS WAF
https://aws.amazon.com/jp/blogs/security/introducing-the-new-console-experience-for-aws-waf/
●AWS Security Hub
〇Unify your security with the new AWS Security Hub for risk prioritization and response at scale (Preview)
https://aws.amazon.com/jp/blogs/aws/unify-your-security-with-the-new-aws-security-hub-for-risk-prioritization-and-response-at-scale-preview/
■AWS Control Tower 運用関連
〇AWS Lambda ランタイム
https://docs.aws.amazon.com/ja_jp/lambda/latest/dg/lambda-runtimes.html
〇AWS Control Tower リリースノート
https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/release-notes.html
- AWS Control Tower バージョン 2.1 の一般提供
https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/2019-all.html#Version-2-1
- 3 つの新しい AWS リージョンが利用可能に
https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/2021-all.html#three-new-regions
- AWS Control Tower が 7 つの追加で利用可能に AWS リージョン
https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/2023-all.html#seven-regions
〇Compliance notifications by SNS in the audit account
https://docs.aws.amazon.com/ja_jp/controltower/latest/controlreference/receive-notifications.html
・ベースラインでの継承ドリフトの解決
〇有効なベースラインでの継承ドリフト
https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/governance-drift.html#drift-enabled-baseline
〇list-enabled-baselines(AWS CLI)
https://docs.aws.amazon.com/cli/latest/reference/controltower/list-enabled-baselines.html
・AWSアカウント解約時の AWS Control Tower 登録解除
〇Account Factory で作成されたアカウントを解約する
https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/delete-account.html
〇アカウントを登録解除する
https://docs.aws.amazon.com/ja_jp/controltower/latest/userguide/unmanage-account.html