Quick Wins in Cloud Compliance: AWS

Channel:
United States SANS Institute
Subscribers:
64,099
Published on ● Video Link: https://www.youtube.com/watch?v=aN_04sW5kpA


Duration: 47:18
467 views
16

You've been tasked with measuring your organization's compliance efforts in the cloud. Whether your organization has just made the move or you've been there for years, you may not know where to start. In this stream, Clay Risenhoover, SANS SEC557 and AUD507 author, and SANS Associate Instructor AJ Yawn will demonstrate some "quick wins" metrics which you can take in AWS. Start your compliance efforts off right with the techniques presented in this live stream.

Objectives:

- Introduce the AWS Security Maturity Model
- Review the metrics which should be gathered FIRST
- Demonstrate tools and techniques for collecting the metric data

Host: Clay Risenhoover | @auditclay
Guest: AJ Yawn | @ajyawn

Stay tuned for “Quick Wins in Cloud Compliance: Azure” and “Quick Wins in Cloud Compliance: GCP” coming soon!

About the Speakers:
Clay Risenhoover is the president of Risenhoover Consulting, Inc., an IT management consulting firm based in Durant, Oklahoma. Founded in 2003, RCI provides IT audit and IT management consulting services to clients in multiple sectors. Clay is a licensed Certified Public Accountant (CPA) with the Certified Information Technology Professional (CITP) designation. Since 2013, Clay has been involved with the SANS Institute and is the lead author and instructor for AUD507: Auditing & Monitoring Networks, Perimeters, and Systems, the sole author of the brand new SEC557: Continuous Automation for Enterprise and Cloud Monitoring, as well as a Faculty Research Advisor (FRA) for the SANS Technology Institute.

AJ Yawn is Co-Founder and CEO at ByteChek and a Founding Board Member of the National Association of Black Compliance and Risk Management Professionals (NABCRMP). AJ has earned 6 AWS certifications including the AWS Solutions Architect-Professional and AWS Security-Specialty. Prior to ByteChek, AJ spent over a decade in the cybersecurity industry both in the US Army and as a consultant. He is a regular speaker at SANS Cloud Security curriculum events such as BIPOC in Cloud Forum and CloudSecNext Summit, and a co-chair of the New2Cyber Summit 2022.

#cloudsecurity #cloudcompliance #complianceautomation #AWS

Learn more about SANS Cloud Security Curriculum at www.sans.org/cloud-security
Connect with us on social:
LinkedIn - SANS Cloud Security
Twitter - @sanscloudsec
YouTube - SANS Cloud Security



Other Videos By SANS Institute


2022-09-27SANS Institute
2022-09-26Vulnerability Management: Finding Context - Part 1 of 3
2022-09-23SANS Healthcare Forum 2022: Vulnerabilities and Mitigation Techniques
2022-09-22Phase 2: Accelerate and Glide
2022-09-14Phase 1: On Your Marks
2022-09-09SANS Cyber Solutions Fest 2022 | Explore Topic Tracks
2022-09-07SANS Cyber Solutions Fest 2022
2022-09-0248-Hour SANS Netwars Global Preview #Shorts
2022-08-24Changing the Paradigm of Cyber Risk Oversight
2022-08-23SANS Threat Analysis Rundown (STAR) | Live Stream
2022-08-23Quick Wins in Cloud Compliance: AWS
2022-08-19SANS Cyber Solutions Fest 2022 - Track: Ransomware
2022-08-19SANS Cyber Solutions Fest 2022 - Track: Cloud Security
2022-08-19SANS Cyber Solutions Fest 2022 - Track: SOC & SOAR
2022-08-19SANS Cyber Solutions Fest 2022 - Track: Threat Hunting & Intelligence
2022-08-17Ransomware Management and Recovery Tactics
2022-08-17Multifaceted Extortion: Analysis of Data Exfiltration TTPs Used by Ransomware Threat Actors
2022-08-17The Role of Cryptocurrency in Ransomware Negotiations and Other Cybercrimes
2022-08-17Can you Detect This? | Inside The Ransomware Operator's Toolkit
2022-08-17Initial Access Merchant Offerings & Ransomware Victims: Mapping Breached Entities & Threat Actors
2022-08-17Sleeping with the Enemy: A Best Practice Guide for Attacker Engagement