DEV Community

Cover image for Stephen Schmidt Keynote at re:Inforce 2021
Eyal Estrin for AWS Community Builders

Posted on • Edited on • Originally published at eyal-estrin.Medium

Stephen Schmidt Keynote at re:Inforce 2021

Alt Text

Statistics from the past year (during COVID19)

  • Number of employees shift to working from home increased by 114%

  • Number of mobile phishing attempts increased by 364%

Threat detection and incident response

Amazon GuardDuty

https://aws.amazon.com/guardduty

Alt Text

Alt Text

https://aws.amazon.com/about-aws/whats-new/2021/01/amazon-guardduty-enhances-security-incident-investigation-workflows-through-new-integration-with-amazon-detective/

AWS Security Hub

https://aws.amazon.com/security-hub

Alt Text

https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-standards-fsbp.html

Best practices for fighting against ransomware

Alt Text

https://d1.awsstatic.com/WWPS/pdf/AWSPS_ransomware_ebook_Apr-2020.pdf

Announcement: AWS Backup Audit Manager

https://aws.amazon.com/about-aws/whats-new/2021/08/aws-backup-audit-manager

https://aws.amazon.com/blogs/aws/monitor-evaluate-and-demonstrate-backup-compliance-with-aws-backup-audit-manager

Alt Text

Identity and Access Manager

https://aws.amazon.com/iam

Alt Text

Alt Text

AWS IAM Access Analyzer

https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html

Alt Text

Best practices for Identity and Access Management

  • Review permissions regularly

  • Use groups for IAM policies

  • Use least privilege in IAM

Security statistics

  • 73% of enterprises have experienced elevated third-party risks amongst their partner and suppliers

  • 53% of these teams were already understaffed before the pandemic began

HBO Max customer story

Alt Text

Alt Text

Alt Text

AWS IoT Core and VPC Endpoints

https://aws.amazon.com/about-aws/whats-new/2021/07/aws-iot-core-supports-vpc-endpoints

Alt Text

AWS Well-Architected test tool

https://aws.amazon.com/well-architected-tool

Alt Text

Data privacy at AWS

https://aws.amazon.com/compliance/privacy-features

https://aws.amazon.com/compliance/sub-processors

Alt Text

Best practices for protecting your data

  • Don't store sensitive data without a plan

  • Encrypt everything

AWS acquired Wicker – End to end encrypted communication technology

https://aws.amazon.com/blogs/security/aws-welcomes-wickr-to-the-team/

Alt Text

Cloud Audit Academy

https://aws.amazon.com/compliance/auditor-learning-path/

Alt Text

Top comments (0)