Overview
Explore a conference talk on dynamic security group recommendations using Grouper and Dredge at Netflix. Dive into the challenges of managing AWS security groups in large environments, including rule limitations, multi-account setups, and cross-region issues. Learn about Netflix's security group management strategy, their maturity approach, and how Grouper aligns with the company's culture of freedom and responsibility. Discover how these tools provide developer network insights and generate AWS security group rules based on current network data, ensuring least privilege access. Gain insights into the history of Netflix's security group infrastructure and their potential plans for open-sourcing these projects. Understand how these solutions help remove roadblocks for developers while maintaining secure defaults in AWS environments.
Syllabus
Intro
Security Groups.
Migration Compromises.
Netflix Culture.
Security Group Maturity.
How Grouper works.
Challenges.
Future State.
Taught by
OWASP Foundation