AWS re:Inforce 2022 keynote highlights
“The Guardians program identifies and develops security experts within engineering teams across AWS, enabling these teams to use Amazon Security more effectively”
https://aws.amazon.com/blogs/security/aws-security-profile-philip-winstanley-security-engineering
PrivatBank case study:
Introducing New Categories of AWS Security Competency Partners
https://aws.amazon.com/blogs/apn/introducing-new-categories-of-aws-security-competency-partners/
https://aws.amazon.com/blogs/apn/introducing-aws-level-1-mssp-competency-specialization-categories/
Announcing AWS Marketplace Vendor Insights to help streamline vendor risk assessments (Preview)
https://aws.amazon.com/about-aws/whats-new/2022/07/aws-marketplace-vendor-insights-streamline-vendor-risk-assessments-preview/
https://aws.amazon.com/marketplace/features/vendor-insights
Cloud Audit Academy
https://aws.amazon.com/compliance/auditor-learning-path/
Threat Modeling Workshop
https://catalog.workshops.aws/threatmodel/en-US
Hybrid post-quantum key agreement
https://aws.amazon.com/blogs/security/how-to-tune-tls-for-hybrid-post-quantum-cryptography-with-kyber/
Automated reasoning
https://www.amazon.science/latest-news/how-awss-automated-reasoning-group-helps-make-aws-and-other-amazon-products-more-secure
Provable Security
https://aws.amazon.com/security/provable-security/
Permission lifecycle:
Call to action:
AWS (IAM) Roles Anywhere Management
https://aws.amazon.com/about-aws/whats-new/2022/07/aws-identity-access-management-iam-roles-anywhere-workloads-outside-aws/
https://docs.aws.amazon.com/rolesanywhere/latest/userguide/introduction.html
Amazon Detective Supports Kubernetes Workloads on Amazon EKS for Security Investigations
https://aws.amazon.com/blogs/aws/amazon-detective-supports-kubernetes-workloads-on-amazon-eks-for-security-investigations/
Malware protection now a feature of Amazon GuardDuty
https://aws.amazon.com/about-aws/whats-new/2022/07/malware-protection-feature-amazon-guardduty/
AWS Security Hub now receives Amazon GuardDuty Malware Protection findings
https://aws.amazon.com/about-aws/whats-new/2022/07/aws-security-hub-receives-amazon-guardduty-malware-protection-findings/
AWS announces AWS Wickr (Preview)
https://aws.amazon.com/about-aws/whats-new/2022/07/aws-announces-aws-wickr-preview/
Link to the entire session in YouTube:
https://www.youtube.com/watch?v=PPunA7tPMyk
About the Author
Eyal Estrin is a cloud and information security architect, the owner of the blog Security & Cloud 24/7 and the author of the book Cloud Security Handbook, with more than 20 years in the IT industry.
You can connect with him on Twitter and LinkedIn.