Explore cloud security fundamentals and best practices in this BSidesLV conference talk. Dive into the Shared Responsibility Model, consumer responsibilities, and logging techniques for AWS, Azure, and Office 365. Learn about centralizing CloudTrail logs, creating dashboards, and implementing continuous compliance measures. Discover tools like Prowler and Security Monkey for configuration management, and understand the importance of account role authentication. Gain insights on incident response planning, federated models, and virtual network taps. Address common concerns such as data transfer costs, protecting root account passwords, and the shift from reactive to proactive security in cloud environments.
Overview
Syllabus
Intro
Who am I
Why I created this talk
Shared Responsibility Model
Consumer Responsibility
AWS Flow Logs
CloudTrail Log
Who Where When How
Centralizing CloudTrail Logs
Dashboards
S3 Logging
Flow Logging
Azure Logs
Office 365 Logs
Continuous Compliance
Shadow IT
AWS Configuration
Prowler
Security Monkey
RedLock
DevOps words
Account Role Authentication
Best Practices
Incident Response
Incident Response Plan
Questions
federated model
virtual network tap
data transfer costs
closing the knowledge gap
moving to the cloud
protecting root account passwords
onprem vs cloud
reactive vs proactive
Taught by
BSidesLV
