How can you build a robust cloud security program in AWS, particularly as a startup and small to medium-sized businesses navigating AWS in 2024? We spoke to Chris Farris, who is the event chair for fwd:cloudsec, a known cloud security expert and one of the first AWS Heroes for security.
Chris shared his insights on how to build a security strategy that is both practical and effective in today's dynamic cloud environment. From discussing the importance of AWS organizations and Identity Centre to breaking down the complexities of cloud security posture management. You will hear actionable advice and best practices.
Guest Socials: Chris's Linkedin (@chrisfarris)
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
- Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
Questions Asked:
(00:00) Introduction
(02:59) A bit about Chris Farris
(03:30) fwd:cloudsec Conference
(04:19) AWS Hero program for Cloud Security
(05:23) Building Effective Cloud Security Programs
(11:39) Top Recommendations for AWS Cloud Security
(13:34) What is AWS IAM Identity Center?
(18:02) How to Set Up AWS IAM Identity Center?
(20:13) Cloud Security in different industries
(29:31) The role of a Cloud Security Engineer
(34:30) Cloud Security Breaches
(38:02) Educational Resources in Cloud Security
(42:41) The Fun Section
Resources spoken about in this episode: fwd:cloudsec AWS IAM Identity Center Leveraging AWS SSO (aka Identity Center) with Google Workspaces breaches.cloud
Understand Your Cloud Security Landscape to cut through the noise!
Kubernetes Security Trends 2024 | Software Supply Chain Security, Zero Trust and AI
Kubernetes Network Security for Multi Tenancy
AWS reInvent 2023 - Security highlights and announcements
eBPF - Kubernetes Network Security without the Blind Sides!
Attack Path Analysis for Better Kubernetes Security
Secure your SaaS applications like this!
Threat Detection for not so Common Cloud Services
How to Escape Clusters in a Managed Kubernetes Cluster?
Have I lost my Secrets?
How to become a Senior Cloud Security Engineer?
5 Skills to Level Up Your Cloud Hacking
Become a Cloud Native CISO in 2023
Software Supply Chain Controls for Terraform
Data Security RoadMap in 2023
The Cloud to Code Dilemma - Let's Talk
CISO Perspective: Josh Lemos, CISO of Gitlab
The Azure Cloud Security Pentesting Skills You NEED!
How to detect software supply chain attacks with Honeytokens?
Google Cloud Security Pentesting Methodology
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast