AWS re:Invent 2022
Simplify and Accelerate Security for Simple Storage Case Studies Prt276

Title

AWS re:Invent 2022 - Simplify and accelerate security for simple storage: Case studies (PRT276)

Summary

  • Mike Milner, VP of Cloud Technology at Trend Micro, discusses the importance of securing data in AWS S3, its evolution, and how it has become foundational for many services and applications.
  • S3's durability (11 nines) and availability (four nines) are highlighted, along with features like S3 replication, versioning, and object lock for compliance.
  • Cost reduction over time and the simplicity of S3 as a key-value store are emphasized.
  • The shared responsibility model for security in AWS is explained, with a focus on customer responsibilities such as data classification, access rights, encryption, and compliance with governance policies.
  • Misconfigurations are identified as the number one source of data leaks in S3.
  • Cloud Security Posture Management (CSPM) tools are recommended for ensuring secure configurations and compliance.
  • The importance of infrastructure as code and security integration in the development pipeline is discussed.
  • Content security is addressed, with a focus on scanning for malware without compromising the scalability and flexibility of S3.
  • Case studies from Fox Sports, an education provider, and a finance company are presented to illustrate how Trend Micro's Cloud One file storage security addresses various customer needs.
  • The session concludes with an invitation to participate in guided workshops and visit the Trend Micro booth for demos.

Insights

  • The evolution of S3 and its features reflect AWS's commitment to providing a durable, available, and cost-effective storage solution that remains simple to use.
  • The shared responsibility model is a cornerstone of AWS security, emphasizing the division of security tasks between AWS and the customer.
  • Misconfigurations in S3 bucket settings are a common cause of security breaches, highlighting the need for vigilant management of access permissions and other security settings.
  • CSPM tools are becoming increasingly important for maintaining security and compliance in cloud environments, especially as infrastructure as code becomes the norm.
  • The integration of security measures into the development pipeline can help prevent security issues early in the application lifecycle, saving time and resources.
  • Content security solutions must be designed to scale with the application and not hinder performance, as demonstrated by Trend Micro's approach with Lambda functions.
  • Real-world case studies provide valuable insights into how different industries with varying requirements can leverage AWS services and third-party security solutions to protect their data.
  • Trend Micro's Cloud One platform is built using AWS components, showcasing a strong partnership and integration with AWS services to provide comprehensive security solutions.
Simplify Accelerate Data Integration Etl Modernization Waws Glue Ant223Simplify the Vendor Risk Assessment Process with Vendor Insights Pex203