Identity & Cross Account Access Management in AWS | CLOUD SECURITY - Alexandre Sieira
Cloud Security Podcast13 Syys 2020

Identity & Cross Account Access Management in AWS | CLOUD SECURITY - Alexandre Sieira

In this episode of the Virtual Coffee with Ashish edition, we spoke with Alexandre Sieira - Founder @ Tenchi Security

In this episode, Alex & Ashish spoke about

  • What was your path into CyberSecurity?
  • What does Cloud Security mean for you?
  • How is Security different in a cloud world?
  • What are the kind of Identities in AWS?
  • What are the challenges with IT?
  • Identity in AWS vs Identity in Azure?
  • Best practices for Privilege and non-Privilege users in AWS?
  • AWS SSO
  • How important are Domain Accounts in Cloud World/
  • Importance of 2FA?
  • What is Cross Account and why does it matter in Cloud?
  • IAM Role in AWS?
  • AWS STS service in AWS?
  • What about Bio metrics as a 2FA?
  • How does one manage identity across a large cloud landscape?
  • Multi-cloud or Poli-cloud?
  • Security people that know all clouds?
  • How should one manage Root Accounts in AWS?
  • What are the challenges with Identity that people are not talking enough about?
  • Recommendation on good source of AWS security training
  • Thoughts on AWS Cognito?
  • Cognito Research by Andres Riancho- https://andresriancho.com/internet-scale-analysis-of-aws-cognito-security/
  • Auditing IAM using Cloud Spanning - https://github.com/salesforce/cloudsplaining
  • Policy Sentry - https://github.com/salesforce/policy_sentry
  • IAM Policy Generator and AWS Challenges between products

ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv

Twitter - @kaizenteq @hashishrajan

If you want to watch videos of this and previous episodes:

- Twitch Channel: https://lnkd.in/gxhFrqw

- Youtube Channel: https://lnkd.in/gUHqSai

Jaksot(345)

Security Governance and Compliance in Serverless Applications

Security Governance and Compliance in Serverless Applications

In this episode of the Virtual Coffee with Ashish edition, we spoke with Jon Zeolla (@jonzeolla ) is a Cloud Native Contributor, co-founder CTO of Seiso. Episode ShowNotes, Links and Transcript on Clo...

7 Marras 202137min

AWS Earns over 16billion this quarter + SEGA on Microsoft Azure - Cloud Security News

AWS Earns over 16billion this quarter + SEGA on Microsoft Azure - Cloud Security News

Cloud Security News this week 27 October 2021 In case you missed the quarterly earnings updates from last episode, I do encourage you to check it out to see how Google Cloud and Azure faired last Qu...

3 Marras 20213min

How to Build Applications with Zero Trust Principles

How to Build Applications with Zero Trust Principles

In this episode of the Virtual Coffee with Ashish edition, we spoke with Maximilian Burkhardt (@maxb) is a Staff Security Engineer at Figma (@Figma) Episode ShowNotes, Links and Transcript on Cloud Se...

31 Loka 202142min

What is SaaS Security Posture Management (SSPM)?

What is SaaS Security Posture Management (SSPM)?

In this episode of the Virtual Coffee with Ashish edition, we spoke with Chris Hughes (@Linkedin-Profile) is a host of the Resilient Cyber Podcast. Episode ShowNotes, Links and Transcript on Cloud Sec...

28 Loka 202120min

AWS Lands UK Spy Services Contact + Google Cloud + Azure release Q3 results - Cloud Security News

AWS Lands UK Spy Services Contact + Google Cloud + Azure release Q3 results - Cloud Security News

Cloud Security News this week 27 October 2021 UK’s spy agencies have given a contract to AWS to host classified material. Their intention is to boost use of data analytics and artificial intelligenc...

27 Loka 20215min

Threat Detection and Incident Response in Cloud - Nathan Case

Threat Detection and Incident Response in Cloud - Nathan Case

In this episode of the Virtual Coffee with Ashish edition, we spoke with Nathan Case ( Linkedin Profile ) is a Senior Director, Security Operations at Resilience. Episode ShowNotes, Links and Transcri...

24 Loka 202146min

HashiConf Global 2021 - Our Cloud Security Picks - Cloud Security News

HashiConf Global 2021 - Our Cloud Security Picks - Cloud Security News

Cloud Security News this week 22 October 2021 Hope you have been enjoying your Cloud Security News this week and in our special third instalment for this week we bring you our best bits from Hashiconf...

22 Loka 20213min

Talks not to be missed at Kubecon North America 2021 - Cloud Security News

Talks not to be missed at Kubecon North America 2021 - Cloud Security News

Cloud Security News this week 21 October 2021 It's a month full of conferences and as promised we are back with our 2nd episode this week to bring you the cloud security highlights from KubeCon. In th...

21 Loka 20213min