Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Securing the Future- A Deep Dive into the re-In...

Sena Yakut
January 21, 2025
0
8

Securing the Future- A Deep Dive into the re-Invent:2024 Security Announcements

Sena Yakut

January 21, 2025
Tweet

More Decks by Sena Yakut

See All by Sena Yakut
What I’ve Learned-My Top AWS WAF Tips for Stronger Protection
senayakut
0
10
Hacking the Cloud - AWS Pentesting in Action
senayakut
0
95
Next-Level Defense: What re: Invent 2024 Means for Your Security
senayakut
0
61
Securing Large Language Models- Threats and Mitigations
senayakut
0
33
Cloud Security Engineering: The Profession of the Future
senayakut
0
45
Gateway to Cloud Security Heaven: Our AWS Expedition
senayakut
0
290
DevSecOps Best Practices- Secure Everything You Have
senayakut
0
160
Securing The Sky Strategies For Protecting Against Cloud Hacking
senayakut
0
120
Cloud Security From Scratch
senayakut
0
82

Featured

See All Featured
Designing Experiences People Love
moore
139
23k
Build your cross-platform service in a week with App Engine
jlugia
229
18k
Making the Leap to Tech Lead
cromwellryan
133
9.1k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
113
50k
Producing Creativity
orderedlist
PRO
343
39k
Java REST API Framework Comparison - PWX 2021
mraible
28
8.4k
jQuery: Nuts, Bolts and Bling
dougneiner
63
7.6k
Rails Girls Zürich Keynote
gr2m
94
13k
Music & Morning Musume
bryan
46
6.3k
Building Better People: How to give real-time feedback that sticks.
wjessup
366
19k
How to train your dragon (web standard)
notwaldorf
89
5.8k
A Philosophy of Restraint
colly
203
16k

Transcript

  1. Securing the Future: A Deep Dive into the re: Invent

    2024 Security Announcements Sena Yakut, 2025

  2. About Me! All links about me Sena Yakut Cloud Security

    Architect @CyberWhiz

  3. Everything starts with security!

  4. Everything starts with security!

  5. • Culture of security importance in AWS • Security should

    be internal mindset • Ownership → required • Threat modeling • Training • AWS Security Team teaches other teams to be security champ.

  6. New: Centrally Managing Root Access • Root account management is

    most critical thing in AWS environment. • Lots of AWS accounts • Enable MFA • Delete access key / secret key • Centrally manage the root access of all your AWS accounts within an organization • New term: Root sessions → AWS root sessions give temporary access to specific tasks that need root-level permissions. • Manage these tasks from one central account, so you don’t have to log in to each account separately

  7. New: Centrally Managing Root Access

  8. New: Centrally Managing Root Access • All accounts in your

    AWS Organizations

  9. New: Centrally Managing Root Access

  10. • Define and enforce configurations for all AWS accounts •

    Apply configuration at scale • Declare and enforce desired configuration for a given AWS service at scale across your organization → Declarative Policies New: Declarative Policies for EC2

  11. New: Declarative Policies for EC2

  12. New: Declarative Policies for EC2

  13. New: Amazon GuardDuty Extended Threat Detection

  14. New: Amazon GuardDuty Extended Threat Detection

  15. New: Amazon GuardDuty Extended Threat Detection

  16. New: Amazon GuardDuty Extended Threat Detection

  17. New: Amazon GuardDuty Extended Threat Detection

  18. New: Amazon GuardDuty Extended Threat Detection

  19. New: AWS Security Incident Response Responding security incidents is hard

    work. • Communications • Alert prioritization • Tools / mechanisms

  20. New: AWS Security Incident Response

  21. New: AWS Security Incident Response To solve all of these:

    Please see pricing page before use it ☺

  22. New: AWS Security Incident Response Proactive Security Response Amazon GuardDuty

    AWS Security Hub + Customer metadata + Service Intelligence = True Positive False Positive

  23. New: AWS Security Incident Response Streamlined and Coordinated Incident Response

    Customer Managed Self managed or AWS CIRT supported

  24. Thank you!!