Building Organizational IAM Guardrail Policies That Work - A Year of NO

Learn how to effectively build, test, and deploy organizational IAM policies in cloud environments through this 23-minute conference talk from fwd:cloudsec. Explore the implementation of protective guardrails that safeguard organizations from unknown threats and limit potential damage from compromised identities, workloads, or credentials. Discover strategies for identifying critical assets, vulnerable points, and data perimeters while understanding how different cloud providers handle IAM policies in edge cases. Master the process of creating and evaluating organizational policies, including building detection mechanisms for policy violations, all while considering real threats and Tactics, Techniques, and Procedures (TTPs) that organizations face in cloud security.