Let’s talk about all things cloud security…
From the common pitfalls when implementing cloud security and how to overcome them to the nitty gritty of how to implement declarative RBAC.
At the end of the talks, there will be time for a Q&A and a general chat about all things cloud security.
We will be providing free pizza! Drinks will be available for purchase from the Brew Society bar.
Talk 1: Common pitfalls with cloud security
With cloud services, there’s so much configuration available. We will show you how to avoid common pitfalls with cloud security so you can deploy your cloud applications with confidence.
Elliot is the founder of Mozstro. He has a strong background in delivering highly secure cloud-native applications. He has a passion for enabling companies to improve their businesses with the power of cloud technology.
Talk 2: Declarative role based access with OSO
How we are using OSO and a declarative permissions model to serve both backend and frontend RBAC needs.
Ben is a principle engineer at Jugo; he tech leads our virtual productions squad. Outside work he has a passion for cars and hiking.
Talk 3: Automate EVERYTHING with Ansible.
How to use Ansible to automate EVERYTHING and prevent typical security configuration errors.
Tony Ampomah
Tony is the Development & DevOps Lead @ Radius. He provides infrastructure guidance and best practices for highly scalable and fault-tolerant solutions. In his spare time, he enjoys all forms of music and plays the guitar. He has enthusiasm for a wide range of sports (football, basketball, pool, and table tennis).
Talk 4: Cloud Metadata Attacks: How to detect this Rising Threat and it’s sneaky evasion tactics
I will be talking around cloud metadata attacks in AWS and how if IMDSV1 is used, this can give attackers an in to grab credentials for an full account takeover. I will be discussing big publicly known incidents where this attack has happened in the past, detection methods using various log sources such as AWS CloudTrail, AWS WAF and Cloudwatch logs and sneaky evasion tactics that attackers may use including VPC endpoints & URL shorteners.
Philip Giles
Senior Cyber Threat Hunter with a passion for Cloud Security. A huge fan of detecting and hunting for threats in an AWS sandbox environment but not a fan of the huge bill which comes with it at the end of the month.
Q&A
General discussion on subjects related to the topic.
Please enter via Brew Society – the entrance to the event space is at the back of Brew Society pub.
This event is also going to be streamed live on youtube. The link for this will be emailed out on the day.