How can you build a robust cloud security program in AWS, particularly as a startup and small to medium-sized businesses navigating AWS in 2024? We spoke to Chris Farris, who is the event chair for fwd:cloudsec, a known cloud security expert and one of the first AWS Heroes for security.
Chris shared his insights on how to build a security strategy that is both practical and effective in today's dynamic cloud environment. From discussing the importance of AWS organizations and Identity Centre to breaking down the complexities of cloud security posture management. You will hear actionable advice and best practices.
Guest Socials: Chris's Linkedin (@chrisfarris)
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
- Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
Questions Asked:
(00:00) Introduction
(02:59) A bit about Chris Farris
(03:30) fwd:cloudsec Conference
(04:19) AWS Hero program for Cloud Security
(05:23) Building Effective Cloud Security Programs
(11:39) Top Recommendations for AWS Cloud Security
(13:34) What is AWS IAM Identity Center?
(18:02) How to Set Up AWS IAM Identity Center?
(20:13) Cloud Security in different industries
(29:31) The role of a Cloud Security Engineer
(34:30) Cloud Security Breaches
(38:02) Educational Resources in Cloud Security
(42:41) The Fun Section
Resources spoken about in this episode: fwd:cloudsec AWS IAM Identity Center Leveraging AWS SSO (aka Identity Center) with Google Workspaces breaches.cloud
Google Cloud Security Fundamentals
Red Team in Google Cloud
How to Automate Security in Google Cloud?
Authorization Control for Enterprise in Cloud
McFee and FireEye join forces for XDR
AWS IAM Getting Started
Remote Access Trojans target Public Cloud Infrastructure
Secret Management for Modern Apps Explained
CISO in a Cloud World in 2022 - Stu Hirst
UK Financial Regulators monitoring Cloud Providers Closely
Building Modern Identity (IAM) Roadmap for Cloud
Google invests in Security + Microsoft's Log4Shell Update
Building Scalable Authorization in Cloud Native Apps
The Latest with Log4J
Log4j - How the Cloud Providers responded!
AWS Outage - What is impacted?
AWS re:Invent 2021 - All the Cloud Security Updates so far
Palo Alto Investors told: "18- 24 months ahead" of competition
Breaking and Building Serverless Application Security
Feds go "Cloud Smart"+ Alibaba Cloud targeted by Hackers
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast