AWS re:Invent 2023
Automating Aws Waf Pioneering Future Security Sec206

Title

AWS re:Invent 2023 - Automating AWS WAF: Pioneering Future Security (SEC206)

Summary

  • Tyler Wendland, Director of Business Development for Cybersecurity Cloud (CSC), introduced CSC and its alliance with AWS.
  • CSC is a Japanese-based cybersecurity solutions provider, operating in over 90 countries with 6,000+ customers.
  • CSC won the AWS Marketplace Partner of the Year award in 2022 for the APJ market and is the number one WAF market leader in Japan.
  • CSC's legacy managed rule product is available in the AWS marketplace, designed to mitigate vulnerabilities on the OWASP top 10 threat list.
  • WAFCHARM is CSC's next-gen enterprise-class solution for AWS WAF, offering industry-leading OWASP top 10 rule set and layer 7 protection.
  • WAFCHARM is resource-based, operates within AWS, and is compatible with services identifiable by AWS WAF, such as Amazon CloudFront and Elastic Load Balancer.
  • WAFCHARM automates AWS WAF rule updates, customization, and monitoring, reducing operational overhead and the need for dedicated security engineers.
  • WAFCHARM offers a DDoS early prevention warning system and global IP blocking list.
  • The solution is agnostic to pre-existing managed rules or domain-based protection, working seamlessly with them.
  • Customer case studies highlighted the benefits of WAFCHARM, including reduced human hours, proactive protection, and improved marketing campaign effectiveness.
  • CSC offers a free 30-day and 60-day proof of concept (POC) for WAFCHARM.

Insights

  • The presentation emphasizes the importance of automating cybersecurity, particularly for organizations with limited resources.
  • WAFCHARM's integration within AWS and its compatibility with AWS services suggest a trend towards seamless, in-environment security solutions.
  • The focus on layer 7 protection and the OWASP top 10 rule set indicates that CSC is targeting common and critical web application vulnerabilities.
  • The case studies demonstrate that WAFCHARM can address a variety of security concerns, from managing false positives/negatives to enhancing marketing campaign confidence.
  • The mention of a free POC indicates CSC's confidence in WAFCHARM's capabilities and their strategy to reduce barriers to adoption.
  • The presentation's recurring theme of "enterprise class solution at SMB prices" suggests that CSC is aiming to make advanced security accessible to a wider range of businesses, not just large enterprises.
Automating a 20 Tb File Server Migration Com303Automating Reporting on Compliance Controls at Cloud Scale Sec232