Free

AWS Security: Central Logging Techniques & Automating - ISSA Central MD Mee...

Event Information

Share this event

Date and Time

Location

Location

UMBC Training Centers

6996 Columbia Gateway Drive

Suite 100

Columbia, MD 21046

View Map

Event description

Description

Please Note:

  • Registration cutoff is September 25th at 12 PM for all attendess.


Topic: AWS Security: Central logging techniques for many accounts, & automating via cloud templates

Logging of essential Amazon services, such as Cloudtrail and VPC flow logs, is essential for security and compliance and governance, whether HIPAA, FISMA, PCI and several other regulatory bodies. In this session we will go over the key concepts in detail -- such as setting up a central account for managing and retaining log events, by any number of governed (source) accounts; and the setup for the source accounts to send their respective logs to the centrally managed account. Since working with multiple accounts can become an issue with scaling and consistency and human errors if the setup was done manually, we will go over better methods using cloud formation templates that help tremendously in that regard by automating the setup! Last but not least, we will also cover best practices – including codifying in the templates – that will account for any type of Amazon unclassified account – which includes the commercial regions as well as the GovCloud (US) regions.


Speaker: Conrad Fernandes, Senior Cyber Security Engineer,

Johns Hopkins Applied Physics Laboratory (APL)

A long time cyber security engineer and architect, with various certifications (CISSP, GIAC FA, Certified AWS Solutions Architect and Security Specialist); and has worked with US Defense agencies and the DoD since the early 2000's while at Booz Allen Hamilton. Conrad currently serves as a senior cyber security engineer at the Johns Hopkins Applied Physics Laboratory (APL), where he leads security and governance practices on emerging cloud technologies, including commercial and US GovCloud (e.g., Amazon web services) and Hadoop-based data science platforms from Cloudera and Hortonworks. Conrad recently presented strategies for "Incident Response and Spillage Handling in AWS" at Amazon's Public Sector Summit and re:Invent Conference. Additionally, Conrad has been researching and implementing security and audit logging and monitoring strategies on data science platforms at Johns Hopkins Medical Institute (JHMI) that utilize various emerging services from Hortonworks Data Platform (HDP) distributions and the collection and correlation of security audit events via Splunk. Conrad also enjoys sharing security best-practices and lessons-learned from the experiences with the larger cloud and big-data communities.


Share with friends

Date and Time

Location

UMBC Training Centers

6996 Columbia Gateway Drive

Suite 100

Columbia, MD 21046

View Map

Save This Event

Event Saved