Identity & Cross Account Access Management in AWS | CLOUD SECURITY - Alexandre Sieira
Cloud Security Podcast13 Syys 2020

Identity & Cross Account Access Management in AWS | CLOUD SECURITY - Alexandre Sieira

In this episode of the Virtual Coffee with Ashish edition, we spoke with Alexandre Sieira - Founder @ Tenchi Security

In this episode, Alex & Ashish spoke about

  • What was your path into CyberSecurity?
  • What does Cloud Security mean for you?
  • How is Security different in a cloud world?
  • What are the kind of Identities in AWS?
  • What are the challenges with IT?
  • Identity in AWS vs Identity in Azure?
  • Best practices for Privilege and non-Privilege users in AWS?
  • AWS SSO
  • How important are Domain Accounts in Cloud World/
  • Importance of 2FA?
  • What is Cross Account and why does it matter in Cloud?
  • IAM Role in AWS?
  • AWS STS service in AWS?
  • What about Bio metrics as a 2FA?
  • How does one manage identity across a large cloud landscape?
  • Multi-cloud or Poli-cloud?
  • Security people that know all clouds?
  • How should one manage Root Accounts in AWS?
  • What are the challenges with Identity that people are not talking enough about?
  • Recommendation on good source of AWS security training
  • Thoughts on AWS Cognito?
  • Cognito Research by Andres Riancho- https://andresriancho.com/internet-scale-analysis-of-aws-cognito-security/
  • Auditing IAM using Cloud Spanning - https://github.com/salesforce/cloudsplaining
  • Policy Sentry - https://github.com/salesforce/policy_sentry
  • IAM Policy Generator and AWS Challenges between products

ShowNotes and Episode Transcript on www.cloudsecuritypodcast.tv

Twitter - @kaizenteq @hashishrajan

If you want to watch videos of this and previous episodes:

- Twitch Channel: https://lnkd.in/gxhFrqw

- Youtube Channel: https://lnkd.in/gUHqSai

Jaksot(344)

What is a Connected Car | How to secure api in connected cars? - Virtual Coffee with Ashish - Alissa Knight

What is a Connected Car | How to secure api in connected cars? - Virtual Coffee with Ashish - Alissa Knight

In this episode of the Virtual Coffee with Ashish edition, we spoke with Alissa Knight, Car Hacker, Author, Cybersecurity Influencer and Entrepreneur Host: Ashish Rajan - Twitter @hashishrajan Gues...

24 Touko 20201h 3min

What is SRE? When should i have SRE? - Virtual Coffee with Ashish - Tim Heckman

What is SRE? When should i have SRE? - Virtual Coffee with Ashish - Tim Heckman

In this episode of the Virtual Coffee with Ashish edition, we spoke with Tim Heckman, Sr. SRE Netflix. Host: Ashish Rajan - Twitter @hashishrajan Guest: Tim Heckman What is SRE? Is it helpful t...

17 Touko 202040min

NIST CyberSecurity Metrics for the Board - Taylor Hersom

NIST CyberSecurity Metrics for the Board - Taylor Hersom

In this episode of the Virtual Coffee with Ashish edition, we spoke with @Taylor Hersom about Why do CyberSecurity Professionals need to think about talking Cyber Security to the board? What kind ...

10 Touko 202057min

Virtual Coffee with Ashish - Cloud Security Podcast & Hacker Valley Studio

Virtual Coffee with Ashish - Cloud Security Podcast & Hacker Valley Studio

In this episode, we sit with Chris Cochran & Ronald Eddings from Hacker Valley Studio. Chris Cochran & Ronald Eddings from Hacker Valley Studio & Ashish spoke about How did you get into CyberSecurit...

3 Touko 20201h

Scaling a DevSecOps model | SERVERLESS SECURITY BEST PRACTICES with Abhay Bhargav , CTO , we45

Scaling a DevSecOps model | SERVERLESS SECURITY BEST PRACTICES with Abhay Bhargav , CTO , we45

In this episode, we sit with Abhay Bhargav, CTO, we45. Abhay & Ashish spoke about What is Cloud Security? Is multi-cloud a thing? What is DevSecOps? What is a good maturity in the DevSecOps sp...

26 Huhti 202041min

CORONAVIRUS & CYBERSECURITY | ISOLATION LIFE

CORONAVIRUS & CYBERSECURITY | ISOLATION LIFE

In this episode, we are covering a trending topic CORONAVIRUS OR COVID19 and how it is affecting businesses around me and my friends & colleagues. I also talk about my personal challenge with starting...

19 Huhti 202010min

How to secure and improve cloud environment - Merritt Baer, Principal Security Architect, AWS

How to secure and improve cloud environment - Merritt Baer, Principal Security Architect, AWS

In this episode, we sit with Merritt Baer, Principal Security Architect, AWS. Merritt & Ashish spoke about What is Cloud Security? What does security look like in a mature organisation? How can...

11 Huhti 202052min

Cloud Center of Excellence in AWS | How Atlassian manages Risk and Compliance - Atlassian 2020

Cloud Center of Excellence in AWS | How Atlassian manages Risk and Compliance - Atlassian 2020

In this episode, we sit with Michael Fuller, Cloud Centre of Excellence, Atlassian. Michael & Ashish spoke about Importance of being standardisation of security across the cloud footprint? Challen...

5 Huhti 202037min