Securing data in the cloud is so much more than blocking public buckets. Even private data can be exfiltrated, unencrypted, and inappropriately stored. Misconfigurations and mitigations are often highly cloud-specific. In this workshop hosted by Brandon Evans, SANS Certified Instructor and the Lead Author of SEC510: Public Cloud Security: AWS, Azure, and GCP, you will identify and address these concerns using cloud native services in the Big 3 cloud providers.
Learning Objectives:
– Discover the many ways that cloud data can be exfiltrated without the use of public storage buckets
– Examine the various data classification services that are available in the Big 3 CSPs
– Identify and remediate instances of Publicly Identifiable Information (PII) being inappropriately handled in a real lab environment
Prerequisites:
A basic understanding of TCP/IP, network security, information security principles are helpful but not required for this course. Familiarity with the Linux command-line or common cloud technology concepts is a bonus.
System Requirements:
CRITICAL NOTE: Apple systems using the M1/M2 processor line cannot perform the necessary virtualization functionality and therefore cannot be used for this course. Mandatory Host Hardware Requirements
CPU: 64-bit 2.5+ GHz multi-core processor or higher
BIOS/UEFI: VT-x, AMD-V, or the equivalent must be enabled in the BIOS/UEFI
Hard Disk: Solid-State Drive (SSD) is MANDATORY with 50GB of free disk space minimum
Memory: 16GB of RAM or higher is mandatory for this class (IMPORTANT! – 16GB of RAM is MANDATORY)
Wireless Ethernet 802.11 B/G/N/AC
Local Administrator Access within your host operating system
Mandatory Host Operating System Requirements
You must use a 64-bit laptop with one of the following operating systems that have been verified to be compatible with course VMware image:
Latest version of Windows 10, macOS 10.15.x or later, or Linux that also can install and run VMware virtualization products described below.
Mandatory Software Requirements
Prior to class, ensure that the following software is installed on the host operating system:
VMware Workstation Pro 15.5.X+, VMware Player 15.5.X+, or Fusion 11.5+
Zip File Utility (7Zip or the built-in operating system zip utility)
About the Creator/Presenter
Brandon Evans is the owner and an InfoSec Consultant at On-Brand Technologies LLC, a consultancy helping organizations secure their applications and other workloads in multi cloud environments, specializing in AWS, Azure, and Google Cloud. Prior to starting his consultancy, Brandon led the secure development training program at Zoom Video Communications. He began his career as a Software Engineer, where he worked on both the core product of a startup, later acquired by a Fortune 500 organization, and on various products spanning a multi-billion dollar enterprise. Brandon is lead author for SEC510: Public Cloud Security: AWS, Azure, and GCP, a contributor to SEC540: Cloud Security and DevSecOps Automation, host of Cloud Ace podcast, Season 1, an analyst for the SANS Multicloud Survey, and a multi-year RSA Conference presenter. Read more about Brandon at
SANS Cloud Security focuses the deep resources of SANS on the growing threats to The Cloud by providing training, GIAC certification, research, and community initiatives to help security professionals build, deploy and manage secure cloud infrastructure, platforms, and applications.
SANS Cloud Security Curriculum: www.sans.org/cloud-security
Twitter: @SANSCloudSec
LinkedIn:
Discord: www.sansurl.com/cloud-discord
[ad_2]
source
