Slide 1
Slide 1 text
ηΩϡϦςΟܥΞοϓσʔτͷશମ૾
0SHBOJ[BUJPOTͷ৽ϙϦγʔΛհ
Slide 2
Slide 2 text
SFHSPXUI@PTBLB
ࣗݾհ
ݪେ LBXBIBSBNBTBIJSP
˔ $MBTTNFUIPE"84ࣄۀຊ෦ ίϯαϧςΟϯά෦
˔ d"845PQ&OHJOFFST
˔ SF*OWFOUݱࢀՃ
˓ ,3BDF͕շͰͨ͠
Slide 3
Slide 3 text
SFHSPXUI@PTBLB
ࠓ͢͜ͱ
˔ ηΩϡϦςΟܥΞοϓσʔτΛ͓͞Β͍
˔ "840SHBOJ[BUJPOTͷΞϓσΛհ
˔ ↳ એݴܕϙϦγʔΛਂງΓ
˔ ↳ ͜Ε͔Βͷ༧తΨʔυϨʔϧ
Slide 4
Slide 4 text
ηΩϡϦςΟܥΞοϓσʔτ
ͬ͘͟Γͱ͓͞Β͍
Slide 5
Slide 5 text
SFHSPXUI@PTBLB
ߋ৽ͷ͋ͬͨ"84αʔϏε ˞༧બམؚͪΉ
Slide 6
Slide 6 text
SFHSPXUI@PTBLB
ߋ৽ͷ͋ͬͨ"84αʔϏε ˞༧બམؚͪΉ
<"843FTPVSDF&YQMPSFS>
ɾػೳ֦ॆɻηΩϡϦςΟίετͷใΛҰݩతʹݕࡧɾཧՄೳʹ
<"844ZTUFNT.BOBHFS>
ɾϚϧνΞΧϯτϚϧνϦʔδϣϯͷϊʔυѲɺཧ͕ҰݩԽ
<"844FDVSJUZ-BLF>
ɾ৽͍͠ύʔτφʔೝఆ "NB[PO4FDVSJUZ-BLF3FBEZ4QFDJBMJ[BUJPO͕ൃද
ɾ0QFO4FBSDI4FSWJDFͱͷ [FSP&5-౷߹Λαϙʔτ
<"84$MPVE5SBJM>
ɾػೳڧԽɻแׅతͳμογϡϘʔυՃͱΫϩεΞΧϯτͰͷσʔλετΞڞ༗
ɾ"*ػೳΛՃɻࣗવݴޠͰͷΫΤϦੜͱΫΤϦ݁Ռͷཁػೳ
<*"."DDFTT"OBMZ[FS>
ɾະ༻ΞΫηεੳʹͯɺΞΧϯτ*%ϩʔϧλάʹΑΔείʔϓબ͕Մೳʹ
Slide 7
Slide 7 text
SFHSPXUI@PTBLB
ߋ৽ͷ͋ͬͨ"84αʔϏε ˞༧બམؚͪΉ
<"84*".>
ɾ0SHBOJ[BUJPOTͷϝϯόʔΞΧϯτͷϧʔτΞΫηε
ΛҰݩཧՄೳʹ
<"840SHBOJ[BUJPOT>
ɾએݴܕϙϦγʔ %FDMBSBUJWFQPMJDZ
͕Ճ
ɾ3$1 3FTPVSDFDPOUSPMQPMJDZ
͕Ճ
<"84$POUSPM5PXFS>
ɾએݴܕϙϦγʔΛ༻ͨ͠༧ίϯτϩʔϧ͕Ճ
ɾ3$1Λ༻ͨ͠༧ίϯτϩʔϧ͕Ճ
ɾ"84#BDLVQͱ౷߹ɻਪόοΫΞοϓઃఆΛҰׅద
༻Մೳʹ
Slide 8
Slide 8 text
SFHSPXUI@PTBLB
ߋ৽ͷ͋ͬͨ"84αʔϏε ˞༧બམؚͪΉ
<"NB[PO71$>
ɾ71$ͷϒϩοΫύϒϦοΫΞΫηε #1"
Λൃද
ɾ$MPVE'SPOU͕71$ΦϦδϯʹରԠ
<"84/FUXPSL'JSFXBMM>
ɾ)551ɺ26*$ɺ1PTUHSF42-ͳͲͷ৽ϓϩτίϧݕ
ग़ʹରԠ
<"847FSJGJFE"DDFTT>
ɾ5$144)ɺ3%1ͳͲͷඇ)551 4
Ϧιʔεͷθϩ
τϥετΞΫηε͕Մೳʹ
Slide 9
Slide 9 text
SFHSPXUI@PTBLB
ߋ৽ͷ͋ͬͨ"84αʔϏε ˞༧બམؚͪΉ
<"NB[PO(VBSE%VUZ>
ɾߴͳڴҖݕग़ػೳ͕Ճɻෳεςʔδͷ߈ܸΛࣗಈݕग़
<"844FDVSJUZ*ODJEFOU3FTQPOTF>
ɾ༗ਓͰηΩϡϦςΟΠϯγσϯτʹରԠͯ͘͠ΔαʔϏε͕("
˞࠷ֹ݄ྉۚ
υϧ͔Β
ɾ"844FDVSJUZ*ODJEFOU3FTQPOTFͷ৽͍͠ύʔτφʔϓϩάϥϜ
Slide 10
Slide 10 text
"840SHBOJ[BUJPOTͷ
ΞοϓσʔτΛհ
Slide 11
Slide 11 text
"840SHBOJ[BUJPOTΛ
͞Βͬͱ͓͞Β͍
Slide 12
Slide 12 text
SFHSPXUI@PTBLB
0SHBOJ[BUJPOTϚϧνΞΧϯτཧͰཱͭαʔϏε
<ओͳಛ>
˔ શ"84ΞΧϯτͷٻΛू
˔ "84ΞΧϯτΛ֊Խͯ͠ཧɺ੍ޚ
˔ ͞·͟·ͳ"84αʔϏεͱ࿈ܞ
ը૾Ҿ༻"840SHBOJ[BUJPOTͷ֓೦ͱ༻ޠ "840SHBOJ[BUJPOT
Slide 13
Slide 13 text
SFHSPXUI@PTBLB
֤छ ϙϦγʔΛͬͯෳΞΧϯτΛ੍ޚͰ͖Δ
˔ 4$1 4FSWJDFDPOUSPMQPMJDZ
˔ λάϙϦγʔ
˔ όοΫΞοϓϙϦγʔ
˔
͑ΔϙϦγʔͷৄࡉҎԼΛࢀর
ˠ5FSNJOPMPHZBOEDPODFQUTGPS"840SHBOJ[BUJPOT "840SHBOJ[BUJPOT
Slide 14
Slide 14 text
"840SHBOJ[BUJPOTͷ
SF*OWFOUΞοϓσʔτ
Slide 15
Slide 15 text
SFHSPXUI@PTBLB
SF*OWFOUʹͯɺͭͷ৽ϙϦγʔ͕ొʂ
˔ 3$1 3FTPVSDFDPOUSPMQPMJDZ
˔ એݴܕϙϦγʔ %FDMBSBUJWFQPMJDZ
Slide 16
Slide 16 text
એݴܕϙϦγʔ
%FDMBSBUJWF1PMJDZ
Slide 17
Slide 17 text
SFHSPXUI@PTBLB
αʔϏεϨϕϧͰ l·͍͠ઃఆz Λఆٛద༻Ͱ͖Δ
˔ એݴܕϙϦγʔ৽͍͠ʮαʔϏεϨϕϧ
ͷϙϦγʔʯ
˔ ৫ͷ"84ΞΧϯτʹ͓͍ͯɺಛఆ
αʔϏεଐੑΛඪ४ԽͰ͖Δ
˔ ΤϥʔϝοηʔδΛΧελϚΠζՄೳ
<ݱࡏαϙʔτ͍ͯ͠Δଐੑ>
˔ 71$
˓ 71$ϒϩοΫύϒϦοΫΞΫηε
˔ &$
˓ γϦΞϧίϯιʔϧΞΫηε
˓ ".*ϒϩοΫύϒϦοΫΞΫηε
˓ ڐՄ͞Εͨ".*ͷར༻
˓ *.%4ͷσϑΥϧτઃఆ
˔
˓ εφοϓγϣοτͷϒϩοΫύϒϦοΫΞΫηε
Slide 18
Slide 18 text
SFHSPXUI@PTBLB
ΫϦοΫͰ؆୯ʹઃఆͰ͖Δ
ը૾Ҿ༻ʲΞοϓσʔτʳ৽ͨʹൃද͞ΕͨEFDMBSBUJWFQPMJDJFTʢએݴܕϙϦγʔʣΛͨΊͯ͠Έͨ "84SF*OWFOUc%FWFMPQFST*0
Slide 19
Slide 19 text
ͦͦએݴతͬͯͳΜͩΖ͏ʁ
Slide 20
Slide 20 text
SFHSPXUI@PTBLB
ʮ݁ہԿ͕͍ͨ͠ͷ͔ʯͱ͍͏త͚ͩΛઆ໌͢Δ͜ͱ
Ҿ༻એݴతʁ %FDMBSBUJWF Ͳ͏͍͏͜ͱʁ !)JSPZVLJ@04",* 2JJUB
Slide 21
Slide 21 text
SFHSPXUI@PTBLB
lεφοϓγϣοτͷϒϩοΫύϒϦοΫΞΫηεz
Λྫʹߟ͑ͯΈΔ
εφοϓγϣοτΛύϒϦοΫʹͨ͘͠ͳ͍Μʂ
త
Slide 22
Slide 22 text
SFHSPXUI@PTBLB
ʙએݴܕϙϦγʔ͕ͳ͍ͱ͖ʙ
εφοϓγϣοτΛύϒϦοΫʹͨ͘͠ͳ͍Μʂ
త
˞ͳ͍Ͱ͢
తͷୡํ๏
Slide 23
Slide 23 text
SFHSPXUI@PTBLB
ʙએݴܕϙϦγʔ͕͋Δͱ͖ʙ
εφοϓγϣοτΛύϒϦοΫʹͨ͘͠ͳ͍Μʂ
త
తͷୡํ๏
Slide 24
Slide 24 text
͜Ε͔Βͷ༧తΨʔυϨʔϧ
Slide 25
Slide 25 text
SFHSPXUI@PTBLB
ࠓɺओཁͳ༧తΨʔυϨʔϧ͕Ұؾʹ૿͑ͨʂ
͜Ε·Ͱͷ<"84ͷ༧తΨʔυϨʔϧͱ͍͑>
˔ 4$1 4FSWJDFDPOUSPMQPMJDZ
͜Ε͔Βͷ<"84ͷ༧తΨʔυϨʔϧͱ͍͑>
˔ 4$1 4FSWJDFDPOUSPMQPMJDZ
˔ 3$1 3FTPVSDFDPOUSPMQPMJDZ
˔ એݴܕϙϦγʔ %FDMBSBUJWFQPMJDZ
Slide 26
Slide 26 text
SFHSPXUI@PTBLB
<Πϝʔδ>͜Ε·Ͱͷ༧తΨʔυϨʔϧ
Slide 27
Slide 27 text
SFHSPXUI@PTBLB
<Πϝʔδ>༧తΨʔυϨʔϧͷ͜Ε͔Β
Slide 28
Slide 28 text
SFHSPXUI@PTBLB
<Πϝʔδ>༧తΨʔυϨʔϧͷ͜Ε͔Β
˞3$1͕αϙʔτ͍ͯ͠ΔαʔϏε
ɾ4
ɾ454
ɾ,.4
ɾ424
ɾ4FDSFUT.BOBHFS
˞એݴܕϙϦγʔͷαϙʔτൣғ
ɾ71$ϒϩοΫύϒϦοΫΞΫηε
ɾ&$γϦΞϧίϯιʔϧΞΫηε
ɾ&$".*ϒϩοΫύϒϦοΫΞΫηε
ɾ&$ڐՄ͞Εͨ".*ͷར༻
ɾ&$*.%4ͷσϑΥϧτઃఆ
ɾεφοϓγϣοτͷϒϩοΫύϒϦοΫΞΫηε
Slide 29
Slide 29 text
͓ΘΓʹ
Slide 30
Slide 30 text
SFHSPXUI@PTBLB
ͨ͜͠ͱ
˔ ηΩϡϦςΟܥΞοϓσʔτΛ͓͞Β͍
˔ "840SHBOJ[BUJPOTͷΞϓσΛհ
˔ ↳ એݴܕϙϦγʔΛਂງΓ
˓ αʔϏεϨϕϧͰʮ·͍͠ઃఆʯΛఆٛద༻
˓ ΫϦοΫͰ؆୯ʹઃఆͰ͖Δ
˔ ↳ ͜Ε͔Βͷ༧తΨʔυϨʔϧ
˓ ·ͣ એݴܕϙϦγʔΛద༻Ͱ͖ͳ͍͔
˓ ࣍ʹैདྷ௨Γ 4$1Λ͏
˓ ิతʹ 3$1Λ͏
Slide 31
Slide 31 text
SFHSPXUI@PTBLB
ࢀߟ
˔ 4JNQMJGZHPWFSOBODFXJUIEFDMBSBUJWFQPMJDJFTc"84/FXT#MPH
˔ <Ξοϓσʔτ>"840SHBOJ[BUJPOTͰએݴܕϙϦγʔ EFDMBSBUJWFQPMJDJFT
͕ར༻Մೳʹͳ
Γ·ͨ͠ "84SF*OWFOUc%FWFMPQFST*0
˔ ʲΞοϓσʔτʳ৽ͨʹൃද͞ΕͨEFDMBSBUJWFQPMJDJFTʢએݴܕϙϦγʔʣΛͨΊͯ͠Έͨ
"84SF*OWFOUc%FWFMPQFST*0
˔ એݴతʁ %FDMBSBUJWF Ͳ͏͍͏͜ͱʁ !)JSPZVLJ@04",* 2JJUB
Slide 32
Slide 32 text
SFHSPXUI@PTBLB
ࢀߟ
● 識別
○ Introducing the Amazon Security Lake Ready Specialization - AWS
○ Amazon OpenSearch Service zero-ETL integration with Amazon Security Lake - AWS
○ Find security, compliance, and operating metrics in AWS Resource Explorer - AWS
○ AWS CloudTrail Lake launches enhanced analytics and cross-account data access - AWS
○ AWS CloudTrail Lake enhances log analysis with AI-powered features - AWS
○ The new AWS Systems Manager experience: Simplifying node management - AWS
○ Customize scope of IAM Access Analyzer unused access analysis - AWS
● 防御
○ Centrally manage root access in AWS Identity and Access Management (IAM) - AWS
○ Amazon Web Services announces declarative policies - AWS
○ Introducing resource control policies (RCPs) to centrally restrict access to AWS resources - AWS
○ AWS Control Tower launches managed controls using declarative policies - AWS
○ AWS Control Tower launches configurable managed controls implemented using resource control policies - AWS
○ AWS Control Tower adds prescriptive backup plans to landing zone capabilities - AWS
○ AWS announces Block Public Access for Amazon Virtual Private Cloud - AWS
○ Amazon CloudFront announces VPC origins - AWS
○ AWS Network Firewall expands the list of supported protocols and keywords in firewall rules - AWS
○ AWS Verified Access now supports secure access to resources over non-HTTP(S) protocols (Preview) - AWS
● 検知/対応
○ AWS announces AWS Security Incident Response for general availability - AWS
○ Respond and recovery more quickly with AWS Security Incident Response Partners - AWS
○ Amazon GuardDuty introduces GuardDuty Extended Threat Detection - AWS
Slide 33
Slide 33 text
No content